Friday, March 29, 2013 23:15:31 UTC
Friday, March 29, 2013 04:15:31 PM at epicenter

Depth: 9.70 km (6.03 mi)

-35.6664 -99.7622-9700

Friday, March 29, 2013 20:38:01 UTC
Saturday, March 30, 2013 06:38:01 AM at epicenter

Depth: 68.40 km (42.50 mi)

-5.4296 151.7334-68400

Friday, March 29, 2013 07:30:58 UTC
Friday, March 29, 2013 03:30:58 AM at epicenter

Depth: 14.40 km (8.95 mi)

-35.3719 -72.7475-14400

Friday, March 29, 2013 06:01:05 UTC
Friday, March 29, 2013 04:01:05 PM at epicenter

Depth: 139.00 km (86.37 mi)

-4.8192 151.6304-139000

Friday, March 29, 2013 05:01:11 UTC
Friday, March 29, 2013 01:01:11 PM at epicenter

Depth: 35.90 km (22.31 mi)

43.4600 86.8356-35900

Thursday, March 28, 2013 03:34:29 UTC
Thursday, March 28, 2013 03:34:29 PM at epicenter

Depth: 43.90 km (27.28 mi)

-23.5966 -175.5085-43900

Wednesday, March 27, 2013 06:42:46 UTC
Wednesday, March 27, 2013 04:42:46 AM at epicenter

Depth: 10.00 km (6.21 mi)

-57.2899 -24.9394-10000

Wednesday, March 27, 2013 05:59:41 UTC
Wednesday, March 27, 2013 03:59:41 AM at epicenter

Depth: 10.00 km (6.21 mi)

-57.3573 -24.8737-10000

Various cyber actors have engaged in malicious activity against U.S. Government and private sector entities. The apparent objective of this activity has been the theft of intellectual property, trade secrets, and other sensitive business information. The malicious actors have employed a variety of techniques to infiltrate targeted organizations, establish a foothold, penetrate throughout the targets’ networks, and steal confidential or proprietary data. The United States Department of Homeland Security, in collaboration with the Federal Bureau of Investigation and other partners, has released a Joint Indicator Bulletin (JIB) through secure channels. This JIB contains cyber threat indicators that will enable public and private sector critical infrastructure partners to take action to mitigate adverse impacts from this activity and protect their sensitive information. This traffic light protocol green JIB contains internet protocol addresses, domain names, and malware indicators associated with malicious data exfiltration activity. Confirmed members of the cybersecurity community of practice, which may include critical infrastructure owners and operators, systems administrators, and information security practitioners, may request a copy of this bulletin by contacting soc@us-cert.gov with the subject “JIB Request,” and including the requestor’s name and affiliation. This product is provided subject to this Notification and this Privacy & Use policy.

Apple has released a security update for Java on OS X Lion v10.7 or later, OS X Lion Server v10.7 or later, OS X Mountain Lion 10.8 or later, Mac OS X v10.6.8, and Mac OS X Server v10.6.8 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code. US-CERT encourages users and administrators to review Apple Support Article HT5666 and follow best-practice security policies to determine which updates should be applied. This product is provided subject to this Notification and this Privacy & Use policy.

Google has released Google Chrome 25.0.1364.87 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to cause a denial-of-service condition or bypass security features. US-CERT encourages users and administrators to review the Google Chrome Release blog entry and update to Chrome 25.0.1364.87. This product is provided subject to this Notification and this Privacy & Use policy.

The Mozilla Foundation has released updates for the following products to address multiple vulnerabilities. Firefox 19.0 Firefox ESR 17.0.3 Thunderbird 17.0.3 Thunderbird ESR 17.0.3 SeaMonkey 2.16 These vulnerabilities could allow an attacker to execute arbitrary code, bypass security features, or cause a denial-of-service condition. US-CERT encourages users and administrators to review the Mozilla Foundation Advisory for Firefox 19.0, Firefox ESR 17.0.3, Thunderbird 17.0.3, Thunderbird ESR 17.0.3, and SeaMonkey 2.16 and apply any necessary updates to help mitigate the risk. This product is provided subject to this Notification and this Privacy & Use policy.

Oracle has released an updated February 2013 Critical Patch Update for Oracle Java SE to address a vulnerability. This vulnerability could allow a remote unauthenticated attacker to execute arbitrary code on vulnerable systems or to provide unauthorized disclosure of information. The following versions of Oracle Java SE are affected: JDK and JRE 7 Update 13 and earlier JDK and JRE 6 Update 39 and earlier JDK and JRE 5.0 Update 39 and earlier SDK and JRE 1.4.2_41 and earlier US-CERT encourages users and administrators to review the bulletin and follow best-practice security policies to determine which updates should be applied. Additional information regarding this vulnerability can be found in Vulnerability Notes VU#636312. This product is provided subject to this Notification and this Privacy & Use policy.

Adobe has released a security advisory for Adobe Reader and Acrobat to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to cause a denial-of-service condition or take control of the affected system. Adobe is aware of reports that two vulnerabilities referenced in Security Advisory APSA13-02, CVE-2013-0640 and CVE-2013-0641, are being exploited in the wild. The advisory indicates that the following versions of Adobe Reader and Acrobat are affected: Adobe Reader XI 11.0.01 and earlier for Windows and Macintosh Adobe Reader X 10.1.5 and earlier for Windows and Macintosh Adobe Reader 9.5.3 and earlier 9.x versions for Windows, Macintosh, and Linux Adobe Acrobat XI 11.0.01 and earlier for Windows and Macintosh Adobe Acrobat X 10.1.5 and earlier for Windows and Macintosh Adobe Acrobat 9.5.3. and earlier 9.x versions for Windows and Macintosh Adobe recommends users update their product installations to the latest version using the instructions provided in the "Solutions" section in Security Bulletin APSB13-07. This product is provided subject to this Notification and this Privacy & Use policy.

Adobe has released a security advisory for Adobe Reader and Acrobat to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to cause a denial-of-service condition or take control of the affected system. Adobe is aware of reports that these vulnerabilities are being exploited in the wild, in targeted attacks designed to trick users into clicking on malicious PDF files delivered in an email message. The advisory indicates that the following versions of Adobe Reader and Acrobat are affected: Adobe Reader XI 11.0.01 and earlier for Windows and Macintosh Adobe Reader X 10.1.5 and earlier for Windows and Macintosh Adobe Reader 9.5.3 and earlier 9.x versions for Windows, Macintosh, and Linux Adobe Acrobat XI 11.0.01 and earlier for Windows and Macintosh Adobe Acrobat X 10.1.5 and earlier for Windows and Macintosh Adobe Acrobat 9.5.3. and earlier 9.x versions for Windows and Macintosh Adobe is in the process of working on a fix for these issues and will update this advisory when a date for the fix has been determined. This product is provided subject to this Notification and this Privacy & Use policy.

Adobe has released a security update for Adobe Reader and Acrobat to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to cause a denial-of-service condition or take control of the affected system. Adobe is aware of reports that these vulnerabilities are being exploited in the wild in targeted attacks designed to trick users into clicking on malicious PDF files delivered in an email message. Adobe has released updates for the following versions: Adobe Reader XI 11.0.01 and earlier for Windows and Macintosh Adobe Reader X 10.1.5 and earlier for Windows and Macintosh Adobe Reader 9.5.3 and earlier 9.x versions for Windows, Macintosh and Linux Adobe Acrobat XI 11.0.01 and earlier for Windows and Macintosh Adobe Acrobat X 10.1.5 and earlier for Windows and Macintosh Adobe Acrobat 9.5.3. and earlier 9.x versions for Windows and Macintosh US-CERT encourages users and administrators to review Adobe Security Bulletin APSB13-02 and follow best-practice security polices to determine which updates should be applied. This product is provided subject to this Notification and this Privacy & Use policy.

Research In Motion (RIM) has released a security advisory for BlackBerry Enterprise Server to address multiple vulnerabilities. Exploitation of these vulnerabilities could allow an attacker to execute arbitrary code or allow elevation of privileges. RIM has released updates for the following versions: BlackBerry Enterprise Server Express versions 5.02 through 5.04 for Microsoft Exchange and IBM Lotus Domino BlackBerry Enterprise Server versions 5.02 through 5.04 for Microsoft Exchange and IBM Lotus Domino BlackBerry Enterprise Server versions 5.0.1 and 5.0.4 for Novell Groupwise US-CERT encourages users and administrators to review RIM security advisory BSRT-2013-003 and apply any necessary updates to help mitigate the risk. This product is provided subject to this Notification and this Privacy & Use policy.

Research In Motion (RIM) has released a security advisory for Blackberry Enterprise Server to address multiple vulnerabilities. Exploitation of these vulnerabilities could allow an attacker to execute arbitrary code or allow elevation of privileges. RIM has released updates for the following versions: Blackberry Enterprise Server Express versions 5.02 through 5.04 for Microsoft Exchange and IBM Lotus Domino Blackberry Enterprise Server versions 5.02 through 5.04 for Microsoft Exchange and IBM Lotus Domino BlackBerry Enterprise Server versions 5.0.1 and 5.0.4 for Novell Groupwise US-CERT encourages users and administrators to review RIM security advisory BSRT-2013-003 and apply any necessary updates to help mitigate the risk. This product is provided subject to this Notification and this Privacy & Use policy.

Adobe has released a security update for Adobe Flash Player to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to cause a denial-of-service condition or take control of the affected systems. Adobe has released updates for the following versions: Adobe Flash Player 11.5.502.149 and earlier versions for Windows and Macintosh Adobe Flash player 11.2.202.262 and earlier versions for Linux Adobe Flash player 11.1.115.37 and earlier versions for Android 4.x devices Adobe Flash player 11.1.111.32 and earlier versions for Android 3.x devices Adobe AIR 3.5.0.1060 and earlier versions Adobe AIR 3.5.0.1060 SDK (including AIR for iOS) and earlier versions US-CERT encourages users and administrators to review Adobe Security Bulletin APSB13-05 and apply any necessary updates to help mitigate the risk. This product is provided subject to this Notification and this Privacy & Use policy.

Adobe has released a security update for Adobe Shockwave Player to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code. Adobe has released updates for the following versions: Adobe Shockwave Player 11.6.8.638 and earlier versions for Windows and Macintosh US-CERT encourages users and administrators to review Adobe Security Bulletin APSB13-06 and apply any necessary updates to help mitigate the risk. This product is provided subject to this Notification and this Privacy & Use policy.