Cybersecurity Advisories

NEW YORK STATE CYBER ALERT LEVEL

Today's Cyber Alert Level is: Guarded

On September 11, the Cyber Threat Alert Level was evaluated and is remaining at Blue (Guarded) due to vulnerabilities in Veeam, SonicWall, Microsoft, Ivanti, Adobe, and Google products. On September 5, the MS-ISAC released an advisory for multiple vulnerabilities in Veeam products, the most severe of which could allow for remote code execution. On September 6, the MS-ISAC released an advisory for multiple vulnerabilities in SonicWall SonicOS Management Access and SSLVPN, the most severe of which could allow for unauthorized resource access. On September 10, the MS-ISAC released three advisories. The first advisory was for multiple vulnerabilities in Microsoft products, the most severe of which could allow for remote code execution. The second advisory was for multiple vulnerabilities in Ivanti products, the most severe of which could allow for remote code execution. The third advisory was for multiple vulnerabilities in Adobe products, the most severe of which could allow for arbitrary code execution. On September 11, the MS-ISAC released an advisory for multiple vulnerabilities in Google Chrome, the most severe of which could allow for arbitrary code execution. Organizations and users are advised to update and apply all appropriate vendor security patches to vulnerable systems and to continue to update their antivirus signatures daily. Another line of defense includes user awareness training regarding the threats posed by attachments and hypertext links contained in emails especially from un-trusted sources.


Guarded indicates a general risk of increased hacking, virus or other malicious activity. The potential exists for malicious cyber activities, but no known exploits have been identified, or known exploits have been identified but no significant impact has occurred.

Other Cyber Advisories
Visit our list of links provided because they have information that may be useful. The Chief Information Security Office (CISO) and the State of New York do not warrant the accuracy of any information contained in the links and neither endorses nor intends to promote the advertising of the resources listed herein.