JANET CSIRT

Mission

The mission of JANET CSIRT is to:

• Ensure the present and future security of JANET and its customers
• Take the lead on the JANET security policy
• Coordinate security responses
• Develop security resources
• Maintain leading-edge skills

In support of this mission we provide incident coordination, training and advice for JANET organisations, and we engage with appropriate organisations and activities beyond JANET.

Latest News

More on the University of Exeter outbreak

Advisories, News (29/1/10, 18:01)

We are now able to confirm that the malware infected systems through the vulnerability highlighted in our previous e-mail. Further details and an update for this Windows Vista vulnerability can be found at

http://support.microsoft.com/kb/975517

Microsoft and Symantec performed an analysis of the malware, and updated Symantec definitions now detect it as a generic ‘downloader’.

There is no reason to suspect that this malware poses a specific threat to other JANET connected sites, and we have not seen any infections elsewhere. It is worth mentioning a few best practices that limit your risk to this and similar infections:

- Ensure that operating systems are kept fully patched
- Ensure that anti-virus definitions are kept up to date
- By default, block Windows LAN service ports at your network border

Older News

• University of Exeter malware outbreak, posted in News (21/1/10, 13:03)
• Vulnerability in Microsoft Internet Explorer, posted in Advisories (20/1/10, 15:35)
• Conficker statistics, posted in News (16/12/09, 16:30)
• Continued Phishing Attacks, posted in News (23/11/09, 17:38)
• Networkshop 2010 – Call for suggestions, posted in Events (29/10/09, 17:32)
• Remote code execution affecting Microsoft Vista, Windows 7 and Server 2008, posted in Advisories (21/9/09, 10:49)