You are on the Cert-IST public site

Crisis management HUB
December 7, 2022
High risk
High risk
Alert level
Last Info
Exchange ProxyNotShell       <1 month
Confluence CVE-2022-26134       <3 month
Windows Follina <6 month
Spring4Shell >6 months
Russie - Ukraine <1 month
Log4j       <6 month
Microsoft PetitPotam <6 month
Exchange (ProxyShell)       >6 months
Exchange (CVE-2021-26855)       >6 months
Ransomware <6 month

Russia-Ukraine conflict

Adobe Commerce AL-2022.013

BIG-IP AL-2022.014

Latest public releases
10-Nov-2022 Cert-IST annual Forum on December, 14th 2022!
The "Annual Cert-IST forum" will take place in Paris on Wednesday,  December 14th.
01-Jun-2022 In Brief: A look at the FBI IC3 report
This article comes from the Cert-IST monthly bulletin n°294 (March 2022).
24-May-2022 What does the Conti leak tell us?
This article comes from the Cert-IST monthly bulletin n°293 (February 2022).
18-Feb-2022 Annual review regarding vulnerabilities and attacks for 2021

Now available in ENGLISH!
Cert-IST has made public its 2021 annual review regarding vulnerabilities and attacks.

11-Jan-2022 Patch management strategy
This article comes from the Cert-IST monthly bulletin n°289 (October 2021).
15-Nov-2021 This is how they tell me the world ends
This article comes from the Cert-IST monthly bulletin n°287 (August 2021).
10-Oct-2021 SSVC: an alternative to CVSS?
This article comes from the Cert-IST monthly bulletin n°286 (July 2021).