If you have an incident to report or another matter that you believe needs urgent attention, contact the Security Incident Response Team (SIRT) of the ICASI member whose product you think is most immediately impacted. That ICASI member?s team will take the next appropriate step.

To get the latest announcements, alerts, fixes and other important information from our members, follow the links provided below for each member company.

July 28, 2009
ICASI Vulnerability Alert
Vulnerabilities in Microsoft Active Template Library (ATL)

ICASI is releasing this alert to provide guidance on issues that have been raised regarding vulnerabilities in Microsoft Active Template Library (ATL). These vulnerabilities could result in information disclosure or remote code execution attacks for controls and components built using vulnerable versions of the ATL. See ICASI press release issued today for more information: http://www.icasi.org/news.htm.

Microsoft has released an advisory and two security bulletins that address the ATL vulnerabilities. Additional information and resources are available at:www.microsoft.com/atl.

ICASI is collaborating with Verizon Business to provide a scanning service at no charge to help software developers in the community analyze risk. Software developers who have built controls and components using Active Template Libraries (ATL) for Microsoft ® Visual Studio can use this service to help identify potential vulnerabilities in their software. Software developers should also review the source code for their software since the service may not identify all vulnerable controls and components. For more information on the service, go to http://codetest.verizonbusiness.com/.

April 10, 2009
Updated Conficker Malware Threat

ICASI is releasing this alert to provide guidance on issues that have been raised regarding the behavior of the Conficker malware. Historically, once botnets reach a sufficient size, their purposes tend to evolve and change organically to meet the needs of the owners. This trend is likely to also occur with Conficker, and many supporting indications have already been observed. Readers are advised to check the resources linked within this alert regularly to ensure they are armed with the latest information concerning Conficker. This alert provides a consolidated view and information from ICASI member companies. [More]

March 31, 2009
Conficker Malware Threat

ICASI is releasing this alert to provide clarity and guidance on issues that have been raised regarding the anticipated April 1st change to Conficker malware. This alert provides a consolidated view and information from ICASI member companies.

What is the threat?
The Conficker worm has grown to be a large active botnet. At this time Conficker affects a variety of Windows operating system platforms, including Windows 2000, XP, Vista and Server 2003. While systems which did not apply the Microsoft update MS08-067 were initially compromised through this vulnerability, the majority of current infections are occurring via open fileshares, weak passwords, shared USB devices and social engineering efforts that trick users into installing this malicious code.
[More]

November 20, 2008
Wi-Fi Protected Access (WPA) Encryption Vulnerability.

ICASI is aware of reports in early November of 2008 that describe a way to partially crack the Wi-Fi Protected Access (WPA) encryption standard used to protect data on many wireless networks. The documented issue affects encryption solutions that implement WPA-TKIP and allows an attacker to inject network traffic between an Access Point and a Client if multimedia extensions are used. Encryption solutions that implement Advanced Encryption Standard (AES) are not affected by this issue. [More]

July 8, 2008
ICASI Members Release Domain Name System (DNS) Advisories
An industry-wide vulnerability was announced today regarding the Domain Name System (DNS). ICASI members have released advisories for their affected products. ICASI encourages customers to review those advisories and deploy any necessary updates or mitigations in a timely manner. For more information on our members' products, please refer to the member URLs on this page. This vulnerability was coordinated by CERT/CC and for additional information please see their weblink at http://www.kb.cert.org/vuls/. For more information on our members? advisories, please refer to the website links on the right.