[EHPweb] Fwd: Notification of DHS Scanning Activity
Bidwell, Christopher
cbidwell at usgs.gov
Tue Sep 17 17:56:42 UTC 2013
Just wanted to forward this out as a heads up.
---------- Forwarded message ----------
From: Exter, Paul <peexter at usgs.gov>
Date: Fri, Sep 13, 2013 at 7:55 AM
Subject: Notification of DHS Scanning Activity
To:
Information Technology Specialists,
The Department of Homeland Security will be conducting vulnerability tests
for Joomla, Ektron and Word Press Content Management System (CMS) on
servers belonging to .GOV domains, starting on September 19, 2013.
Fingerprinting will be limited to web servers and will consist of normal
web traffic, such as GET requests.
** **
The testing traffic will originate from the DHS registered network,
64.69.57.0/24.****
** **
This is a follow up to the fingerprinting activity which occurred during
the week of August 5, 2013. DHS will compare the results to determine
which vulnerable Content Management Systems have been updated and report to
OMB on those that have been remedied and those still using vulnerable CMS
software.****
**
This activity may not impact your location, but I wanted you to be aware in
case you see the above IP in your server logs.
Please direct any questions to GS ITSOT.
This message has been Sent to GS IT ALL.
--
Thank You,
Paul E. Exter
USGS Chief Technology Officer
--
Chris Bidwell, CEH, CPT, RHCSA
Red Hat Linux Administrator
National Earthquake Information Center
US Geological Survey
email: cbidwell at usgs.gov
work: 303-273-8642
mobile: 303-435-6362
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://geohazards.usgs.gov/pipermail/ehpweb/attachments/20130917/116fe089/attachment.html>
More information about the EHPweb
mailing list