The Internet Traffic Report monitors the flow of data around the world. It then displays a value between zero and 100. Higher values indicate faster and more reliable connections.

Shortcuts

Security Information

This page is dedicated to security, it includes local security information, as well as a number of syndicated security feeds, alerts, tools and news from major security portals. This page aims to provide a single security information access point, helping you stay current with recent security threats. You can check the SG Security FAQ and visit the SG Security forum with any questions you might have.

SG Security Scan

The SG Security Scan is a great tool that tests a number of ports on your computer for the most common vulnerabilities.

SG Security Scanner

Vulterable Ports

Commonly Open Ports

SG Ports - comprehensive database of known TCP/UDP ports

SG Security Articles

General Security Guide

How To Crack WEP and WPA Wireless Networks

How to Secure your Wireless Network

How to Stop Denial of Service (DoS) Attacks

IRDP Security Vulnerability in Windows 9x

Which VPN Protocol to use?

Why encrypt your online traffic with VPN ?

Latest Security Advisories (US-CERT)

CISA Releases Cybersecurity Advisory on SimpleHelp RMM Vulnerability (2025.06.12)

Today, CISA released Cybersecurity Advisory: Ransomware Actors Exploit Unpatched SimpleHelp Remote Monitoring and Management to Compromise Utility Billing Software Provider.

This advisory is in response to ransomware actors targeting customers of a utility billing software provider through unpatched vulnerabilities in SimpleHelp Remote Monitoring and Management (RMM).

This incident is part of a broader trend of ransomware actors exploiting unpatched versions of SimpleHelp RMM since January 2025.

SimpleHelp versions 5.5.7 and earlier contain multiple vulnerabilities, including CVE-2024-57727, a path traversal vulnerability. Ransomware actors likely exploited CVE-2024-57727 to access downstream customers unpatched SimpleHelp RMM, resulting in service disruptions and double extortion incidents.

CISA added CVE-2024-57727 to its Known Exploited Vulnerabilities Catalog on February 13, 2025.

Organizations using SimpleHelp RMM should:

Search for evidence of compromise,
Apply the mitigations outlined in the advisory such as patching CVE-2024-57727 and/or implementing appropriate workarounds to prevent or respond to confirmed or potential compromises, and
Follow CISAs Known Exploited Vulnerabilities Catalog.

CISA Releases Ten Industrial Control Systems Advisories (2025.06.12)

CISA released ten Industrial Control Systems (ICS) advisories on June 12, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

ICSA-25-162-01 Siemens Tecnomatix Plant Simulation
ICSA-25-162-02 Siemens RUGGEDCOM APE1808
ICSA-25-162-03 Siemens SCALANCE and RUGGEDCOM
ICSA-25-162-04 Siemens SCALANCE and RUGGEDCOM
ICSA-25-162-05 Siemens SIMATIC S7-1500 CPU Family
ICSA-25-162-06 Siemens Energy Services
ICSA-25-162-07 AVEVA PI Data Archive
ICSA-25-162-08 AVEVA PI Web API
ICSA-25-162-09 AVEVA PI Connector for CygNet
ICSA-25-162-10 PTZOptics and Other Pan-Tilt-Zoom Cameras

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

CISA Adds Two Known Exploited Vulnerabilities to Catalog (2025.06.10)

CISA has added two new vulnerabilities to itsKnown Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

CVE-2025-24016 Wazuh Server Deserialization of Untrusted Data Vulnerability

CVE-2025-33053 Web Distributed Authoring and Versioning (WebDAV) External Control of File Name or Path Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilitiesestablished the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See theBOD 22-01 Fact Sheetfor more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation ofKEV Catalog vulnerabilitiesas part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet thespecified criteria.

CISA Releases Four Industrial Control Systems Advisories (2025.06.10)

CISA released four Industrial Control Systems (ICS) advisories on June 10, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

ICSA-25-160-01 SinoTrack GPS Receiver
ICSA-25-160-02 Hitachi Energy Relion 670, 650, SAM600-IO Series
ICSMA-25-160-01 MicroDicom DICOM Viewer
ICSA-25-140-11 Assured Telematics Inc (ATI) Fleet Management System (Update A)

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

CISA Adds Two Known Exploited Vulnerabilities to Catalog (2025.06.09)

CISA has added two new vulnerabilities to itsKnown Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

CVE-2025-32433 Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability

CVE-2024-42009 RoundCube Webmail Cross-Site Scripting Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

CISA Releases Seven Industrial Control Systems Advisories (2025.06.05)

CISA released seven Industrial Control Systems (ICS) advisories on June 5, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

ICSA-25-155-01 CyberData 011209 SIP Emergency Intercom
ICSA-25-155-02 Hitachi Energy Relion 670, 650 series and SAM600-IO Product
ICSA-21-049-02 Mitsubishi Electric FA Engineering Software Products (Update H)
ICSA-25-133-02 Hitachi Energy Relion 670/650/SAM600-IO Series (Update A)
ICSA-23-068-05 Hitachi Energy Relion 670, 650 and SAM600-IO Series (Update A)
ICSA-21-336-05 Hitachi Energy Relion 670/650/SAM600-IO (Update A)
ICSA-23-089-01 Hitachi Energy IEC 61850 MMS-Server (Update A)

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

CISA Adds One Known Exploited Vulnerability to Catalog (2025.06.05)

CISA has added one new vulnerability to itsKnown Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

CVE-2025-5419 Google Chromium V8 Out-of-Bounds Read and Write Vulnerability

This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise.

Updated Guidance on Play Ransomware (2025.06.04)

CISA, the Federal Bureau of Investigation (FBI), and the Australian Signals Directorates Australian Cyber Security Centre (ASDs ACSC) have issued an updated advisory onPlay ransomware, also known as Playcrypt. This advisory highlights new tactics, techniques, and procedures used by the Play ransomware group and provides updated indicators of compromise (IOCs) to enhance threat detection.

Since June 2022, Playcrypt has targeted diverse businesses and critical infrastructure across North America, South America, and Europe, becoming one of the most active ransomware groups in 2024. The FBI has identified approximately 900 entities allegedly exploited by these ransomware actors as of May 2025.

Recommended mitigations include:

Implementing multifactor authentication;
Maintaining offline data backups;
Developing and testing a recovery plan; and
Keeping all operating systems, software, and firmware updated.

Stay vigilant and take proactive measures to protect your organization.