New York State's Cyber Security Alert Indicator
Today's Cyber Alert Level is:
On April 9, 2014, the Cyber Alert Level is remaining at Blue (Guarded) due to a general risk of increased hacking, virus or other malicious activity. Organizations and users are advised to review the details outlined in recent advisories, update and apply all appropriate vendor security patches to vulnerable systems after appropriate testing, and update their antivirus signatures daily. Another line of defense includes user awareness training regarding the threats posed by attachments and hypertext links contained in emails especially from un-trusted sources.
Further, users should be aware that official Microsoft support for two of its products, Windows XP and Office 2003, ended on April 8, 2014. In the absence of Microsoft support for these products, users may be exposed to an increasing number of vulnerabilities. Users who have not yet migrated from these products are urged to upgrade now to operating systems that are supported or, if this is not possible, determine what mitigating countermeasures may be employed until such a migration is possible.
Indicates a low risk. No unusual activity exists beyond the normal concern for known hacking activities, known viruses or other malicious activity.
Indicates a general risk of increased hacking, virus or other malicious activity. The potential exists for malicious cyber activities, but no known exploits have been identified, or known exploits have been identified but no significant impact has occurred.
Indicates a significant risk due to increased hacking, virus or other malicious activity which compromises systems or diminishes service. At this level, there is known vulnerabilities that are being exploited with a moderate level of damage or disruption, or the potential for significant damage or disruption is high.
Indicates a high risk of increased hacking, virus or other malicious cyber activity which targets or compromises core infrastructure, causes multiple service outages, multiple system compromises or compromises critical infrastructure. At this level, vulnerabilities are being exploited with a high level of damage or disruption, or the potential for severe damage or disruption is high.
Indicates a severe risk of hacking, virus or other malicious activity resulting in wide-spread outages and/or significantly destructive compromises to systems with no known remedy or debilitates one or more critical infrastructure sectors. At this level, vulnerabilities are being exploited with a severe level or wide spread level of damage or disruption of Critical Infrastructure Assets.
The Alert Indicator shows the current level of malicious cyber activity and reflects the potential for, or actual damage.
For the purposes of this process, critical infrastructure assets are being defined as follows:
Critical Infrastructure Assets are physical and/or logical assets which are so vital that their infiltration, incapacitation, destruction or misuse would have a debilitating impact on the health, safety, welfare or economic security of the citizens and businesses of New York State.
- Cyber Security Home
- Incident Reporting
- Breach Notification
- Cyber Advisories
- NYS Digital Forensics
- Cyber Tips Newsletter
- Keeping Kids Safe Online
- Local Government
- Policies and Resources
- NY-ISAC Secure Portal