Office of Cyber Security

Cyber Security

• Policies/Standards/Guidelines
• Cyber Advisories
• Cyber Resources Library
• Local Government Resources
• Public-Private Partnership
• Monthly Cyber Tips Newsletter
• About OCS
• Multi-State ISAC

Critical Infrastructure

• NYSGIS Clearinghouse
• View Orthoimagery
• Broadband Mapping
• GIS Data
• Coordination Program
• Orthoimagery
• Outreach
• Raster Maps
• Calendar of Events
• GIS Help Desk

Current Cyber Threat Level

On July 26, 2010, the Cyber Alert Level is remaining at Blue (Guarded) due to vulnerabilities discovered in Microsoft and Novell. On July 16, 2010, an advisory was written for a vulnerability discovered in Novell GroupWise. On July 17, 2010, we issued an advisory for a Microsoft 0-day vulnerability in the Windows Shell which is actively being exploited in limited targeted attacks. This advisory was updated on July 20 and 21 with workarounds and mitigating factors. On July 21, 2010, an advisory was written for multiple vulnerabilities in Mozilla Products. Organizations and users are advised to review the details outlined in these advisories and to update and apply all appropriate vendor security patches to vulnerable systems and to continue to update their antivirus signatures daily. Another line of defense includes user awareness training regarding the threats posed by attachments and hypertext links contained in emails especially from un-trusted sources.

Cyber Advisories

• 07/26/2010 - Vulnerability in Mozilla Firefox
• 07/21/2010 - Vulnerability in Windows Shell
• 07/21/2010 - Multiple Vulnerabilities in Mozilla Products Could Allow Remote Code Execution

What's New

• Security
• New Div of Homeland Security & Emer Srvs
• Windows Zero Day Exploit - CTICG Advisory
• Cyber Security Conf.: Archived Presentations
• Cyber Tips - Protecting Data
• 6/23 National Webcast on Incident Response
• Cybersecurity Management Report
• Bulletin Fraudulent Wire Transfers
• Info Class Video Available
• Application Security Procurement Language
• U.S. Cyber Challenge
• Geospatial
• DEC Lands Dataset Updated
• Albany County Tax Map Data
• Schoharie Parcel Data Now Available
• Orthoimagery Lot 9 Available
• New GIS Data from CDTA
• GIS Winter 2009-10 Newsletter
• CSCIC Awarded Broadband Mapping Grant
• Updated GIS Streets Files Available
• Guidelines for Contracting for GIS Services
• MORE! CSCIC GIS Datasets Open To Public
• NYS GIS Strategic Plan

Resources

• Security
• Cyber Security Awareness Videos
• Multi-Government Encryption Procurement
• MS-ISAC Digital Dashboard
• Geospatial
• GIS Data Sharing Cooperative FAQ
• Cyber Security Tips
• NYS GIS Strategic Plan
• Imagery for Everyone
• Who's Who in GIS

In The News

• Security
• The Evolution of W32.Ackantta.B@mm
• Phishing Site Uses Katrina Kaif as Bait
• W32.Stuxnet Variants
• Tracking Cookies
• After Football, Scammers Pursue the Cricket World Cup
• Fraudsters Offering Free Mobile Phone Airtime
• W32.Changeup: Visual Basic Polymorphic Code Uncovered
• Security Trends to Watch in 2010: A Mid-Year Status Check
• W32.Changeup Threat Profile
• W32.Stuxnet – Network Operations
• W32.Stuxnet — Network Information
• Insights into Shutting Down the Virut Botnet
• Geospatial
• Beverly Hills, Calif., Goes Virtual to Protect Against Real Disasters (Video)
• Parolees Monitored by GPS Don't Get Free Ride at State Fair
• Broadband a Key Part of Michigan's Shared Services Push
• Industry Experts Detail Current Technology Trends and What They See Farther Down the Road
• Earl Devaney, Chairman of the Federal Recovery Board, Talks About Building and Running Recovery.gov
• Massachusetts Charts New Course for GIS Program
• New York City Transit Apps Deliver Maps on the Go
• Pinellas County, Fla., Unveils 24/7 Crime Mapping Tool
• County Recruits Geocachers in Battle Against Invasive Weeds
• Crime and Traffic Safety Data Help Public Safety Agencies Reduce Serious Crashes and Crimes