The Internet Traffic Report monitors the flow of data around the world. It then displays a value between zero and 100. Higher values indicate faster and more reliable connections.

Shortcuts

Security Information

This page is dedicated to security, it includes local security information, as well as a number of syndicated security feeds, alerts, tools and news from major security portals. This page aims to provide a single security information access point, helping you stay current with recent security threats. You can check the SG Security FAQ and visit the SG Security forum with any questions you might have.

SG Security Scan

The SG Security Scan is a great tool that tests a number of ports on your computer for the most common vulnerabilities.

SG Security Scanner

Vulterable Ports

Commonly Open Ports

SG Ports - comprehensive database of known TCP/UDP ports

SG Security Articles

General Security Guide

How To Crack WEP and WPA Wireless Networks

How to Secure your Wireless Network

How to Stop Denial of Service (DoS) Attacks

IRDP Security Vulnerability in Windows 9x

Which VPN Protocol to use?

Why encrypt your online traffic with VPN ?

Latest Security Advisories (US-CERT)

CISA Releases Four Industrial Control Systems Advisories (2025.08.19)

CISA released four Industrial Control Systems (ICS) advisories on August 19, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

ICSA-25-231-01 Siemens Desigo CC Product Family and SENTRON Powermanager
ICSA-25-231-02 Siemens Mendix SAML Module
ICSA-25-217-02 Tigo Energy Cloud Connect Advanced (Update A)
ICSA-25-219-07 EG4 Electronics EG4 Inverters (Update A)

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

CISA Adds One Known Exploited Vulnerability to Catalog (2025.08.18)

CISA has added one new vulnerability to itsKnown Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

CVE-2025-54948 Trend Micro Apex One OS Command Injection Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilitiesestablished the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See theBOD 22-01 Fact Sheetfor more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation ofKEV Catalog vulnerabilitiesas part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet thespecified criteria.

CISA Releases Thirty-Two Industrial Control Systems Advisories (2025.08.14)

CISA released thirty-two Industrial Control Systems (ICS) advisories on August 14, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

ICSA-25-226-01 Siemens SIMATIC RTLS Locating Manager
ICSA-25-226-02 Siemens COMOS
ICSA-25-226-03 Siemens Engineering Platforms
ICSA-25-226-04 Siemens Simcenter Femap
ICSA-25-226-05 Siemens Wibu CodeMeter Runtime
ICSA-25-226-06 Siemens Opcenter Quality
ICSA-25-226-07 Siemens Third-Party Components in SINEC OS
ICSA-25-226-08 Siemens RUGGEDCOM CROSSBOW Station Access Controller
ICSA-25-226-09 Siemens RUGGEDCOM APE1808
ICSA-25-226-10 Siemens SIPROTEC 5
ICSA-25-226-11 Siemens SIMATIC S7-PLCSIM
ICSA-25-226-12 Siemens SIPROTEC 4 and SIPROTEC 4 Compact
ICSA-25-226-13 Siemens SIMATIC RTLS Locating Manager
ICSA-25-226-14 Siemens RUGGEDCOM ROX II
ICSA-25-226-15 Siemens SINEC OS
ICSA-25-226-16 Siemens SICAM Q100/Q200
ICSA-25-226-17 Siemens SINEC Traffic Analyzer
ICSA-25-226-18 Siemens SIMOTION SCOUT, SIMOTION SCOUT TIA, and SINAMICS STARTER
ICSA-25-226-19 Siemens SINUMERIK
ICSA-25-226-20 Siemens RUGGEDCOM ROX II
ICSA-25-226-21 Siemens BFCClient
ICSA-25-226-22 Siemens Web Installer
ICSA-25-226-23 Rockwell Automation FactoryTalk Viewpoint
ICSA-25-226-24 Rockwell FactoryTalk Linx
ICSA-25-226-25 Rockwell Automation Micro800
ICSA-25-226-26 Rockwell Automation FLEX 5000 I/O
ICSA-25-226-27 Rockwell Automation ArmorBlock 5000 I/O Webserver
ICSA-25-226-28 Rockwell Automation ControlLogix Ethernet Modules
ICSA-25-226-29 Rockwell Automation Studio 5000 Logix Designer
ICSA-25-226-30 Rockwell Automation FactoryTalk Action Manager
ICSA-25-226-31 Rockwell Automation 1756-ENT2R, 1756-EN4TR, 1756-EN4T
ICSA-25-212-01 Gralp Systems FMUS Series and MIN Series Devices (Update A)

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

CISA and Partners Release Asset Inventory Guidance for Operational Technology Owners and Operators (2025.08.13)

CISA, along with the National Security Agency, the Federal Bureau of Investigation, Environmental Protection Agency, and several international partners, released comprehensive guidance to help operational technology (OT) owners and operators across all critical infrastructure sectors create and maintain OT asset inventories and supplemental taxonomies.

An asset inventory is a regularly updated, structured list of an organization's systems, hardware, and software. It includes a categorization systema taxonomythat classifies assets based on their importance and function. This guidance explains how OT owners and operators can create, maintain, and use asset inventories and taxonomies to identify and safeguard their critical assets.

Following this guidance, organizations may gain deeper insights into their architecture, optimize their defenses, better assess and reduce cybersecurity risk in their environments, and enhance incident response planning to ensure service continuity.

CISA Adds Two Known Exploited Vulnerabilities to Catalog (2025.08.13)

CISA has added two new vulnerabilities to itsKnown Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

CVE-2025-8875 N-able N-central Insecure Deserialization Vulnerability
CVE-2025-8876 N-able N-central Command Injection Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

CISA Releases Seven Industrial Control Systems Advisories (2025.08.12)

CISA released seven Industrial Control Systems (ICS) advisories on August 12, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

ICSA-25-224-01 Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share
ICSA-25-224-02 Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, iSTAR Edge G2
ICSA-25-224-03 Schneider Electric EcoStruxure Power Monitoring Expert
ICSA-25-224-04 AVEVA PI Integrator
ICSA-24-263-04 MegaSys Computer Technologies Telenium Online Web Application (Update A)
ICSA-25-191-10 End-of-Train and Head-of-Train Remote Linking Protocol (Update A)
ICSMA-25-224-01 Santesoft Sante PACS Server

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

CISA Adds Three Known Exploited Vulnerabilities to Catalog (2025.08.12)

CISA has added three new vulnerabilities to itsKnown Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

CVE-2013-3893 Microsoft Internet Explorer Resource Management Errors Vulnerability
CVE-2007-0671 Microsoft Office Excel Remote Code Execution Vulnerability
CVE-2025-8088 RARLAB WinRAR Path Traversal Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

CISA Issues ED 25-02 Mitigate Microsoft Exchange Vulnerability (2025.08.07)

Today, CISA issued Emergency Directive (ED) 25-02: Mitigate Microsoft Exchange Vulnerability in response to CVE-2025-53786, a vulnerability in Microsoft Exchange server hybrid deployments.

ED 25-02 directs all Federal Civilian Executive Branch (FCEB) agencies with Microsoft Exchange hybrid environments to implement required mitigations by 9:00 AM EDT on Monday, August 11, 2025.

This vulnerability presents significant risk to all organizations operating Microsoft Exchange hybrid-joined configurations that have not yet implemented the April 2025 patch guidance.

Although this directive is only for FCEB agencies, CISA strongly encourages all organizations to address this vulnerability. For additional details, see CISAs Alert: Microsoft Releases Guidance on Vulnerability (CVE-2025-53786) in Hybrid Exchange Deployments.