The following documents are available on the US-CERT web site.

Securing your computer | Recovering from an attack | General internet security | Distributable materials | Monthly and quarterly reports

• Before You Connect a New Computer to the Internet
  
  • Tips for connecting a new (or newly upgraded) computer to the internet for the first time
  • For home users, students, small businesses, or any organizations with limited Information Technology (IT) support

• Common Sense Guide to Cyber Security for Small Businesses
  
  • Security practices for non-technical managers at companies with more than a single computer, but without a sophisticated in-house information technology department
  • Details of small businesses that were adversely affected by cyber crimes

• Home Computer Security
  Examples, checklists, and a glossary for securing a home computer
• Home Network Security
  Overview of the security risks and countermeasures associated with internet connectivity
• Recognizing and Avoiding Email Scams
  Introduction to what email scams are, how they work, and how to avoid them
• Securing Your Web Browser
  This paper will help you secure your web browser.
• Software License Agreements: Ignore at Your Own Risk
  An overview of the risks computer users may incur by blindly agreeing to terms contained in software licensing agreements
• Spyware (non-technical)
  Overview of spyware and some practices to defend against it
• Using Wireless Technology Securely
  An overview of the risks associated with wireless technology and some practices for using it safely

• Virus Basics
  An introduction to viruses and ways to avoid them

• Cyber Security Response to Physical Security Breaches
  Details a cyber security response that critical asset security managers can implement to determine if a cyber asset was targeted during a physical breach.
  
• Hurricane Katrina Control System Assistance
  Provides assistance to owners and operators in rebuilding and securely restarting sensitive control systems
• Intruder Detection Checklist
  
  • For system administrators looking to modify their systems to close potential weaknesses
  • Suggested steps for determining if a system has been compromised

• Recovering from a Trojan Horse or Virus
  Steps for saving a computer and files after a machine has been infected with a Trojan Horse or virus.

• Understanding Voice over Internet Protocol (VoIP)
  This paper provides an overview of VoIP and focuses primarily on security issues that may affect those new to this technology.

• Banking Securely Online
  This paper discusses risks associated with online banking and provides some practices for using it safely.
• Playing it Safe: Avoiding Online Gaming Risks
  This paper discusses technological and social risks associated with online gaming.
• Look Before You Click: Trojan Horses and Other Attempts to Compromise Networks
  A United States Department of Homeland Security Joint Information Bulletin
• Common Sense Guide to Prevention and Detection of Insider Threats
  Practices for mitigating insider threats
• Computer Forensics
  Discusses the need for computer forensics to be practiced in an effective and legal way, outlines basic technical issues, and points to references for further reading
• The Continuing Denial of Service Threat Posed by DNS Recursion (v2.0)
  US-CERT has been alerted to an increase in distributed denial of service (DDoS) attacks using spoofed recursive DNS requests. These attacks are troublesome because all systems communicating over the internet need to allow DNS traffic. This paper provides information about configuring DNS servers to protect against this threat.

• Control Systems Cyber Security Awareness
  The first in a series on control sytems cyber security, this paper discusses security trends and provides information on critical infrastructure partner programs.
• Current Malware Threats and Mitigation Strategies
  A focus on the rapidly growing problem of malicious code and provides organizations with best practice defense tactics

• Malware Tunneling in IPv6
  Describes Malware Tunneling and how to manage attacks
• National Strategy to Secure Cyberspace
  Engages and empowers Americans to secure the portions of cyberspace that they own, operate, control, or with which they interact
• Protecting Aggregated Data
  Discusses security issues, business impacts, and potential strategies for organizations that create and maintain large aggregations of data
• Security of the Internet
  Basic concepts of internet security, vulnerabilities, and methods to improve security
• Spyware (technical)
  An in-depth look at spyware, provides examples of some common threats, and outlines policies and practices to defend against spyware and architect the value out of the spyware market
• Technical Trends in Phishing Attacks
  Identifies technical capabilities behind phishing attacks, reviews trends, and discusses countermeasures

• Protect Your Workplace Campaign
  Posters and a brochure that offer guidance for creating a secure workplace and for reporting cyber incidents
• DHS cyber security initiatives
  Information sheets that describe some of the Department of Homeland Security's cyber security efforts

• US-CERT Monthly Activity Summary - May 2008
  May 2008
• US-CERT Quarterly Trends and Analysis Report, Vol. 3, Issue 2
  May 2008
• US-CERT Monthly Activity Summary - April 2008
  April 2008
• US-CERT Monthly Activity Summary - March 2008
  March 2008
• US-CERT Monthly Activity Summary - February 2008
  February 2008
• US-CERT Quarterly Trends and Analysis Report, Vol. 3, Issue 1
  February 2008
• US-CERT Monthly Activity Summary - January 2008
  January 2008
• US-CERT Monthly Activity Summary - December 2007
  December 2007
• US-CERT Quarterly Trends and Analysis Report, Vol. 2, Issue 4
  December 2007
• US-CERT Monthly Activity Summary - November 2007
  November 2007
• US-CERT Quarterly Trends and Analysis Report, Vol. 2, Issue 3
  September 2007
• US-CERT Quarterly Trends and Analysis Report, Vol. 2, Issue 2
  June 2007
• US-CERT Quarterly Trends and Analysis Report, Vol. 2, Issue 1
  March 2007
• US-CERT Quarterly Trends and Analysis Report, Vol. 1, Issue 2
  November 2006
• DHS Cyber Preparedness eNewsletter, Vol. 2
  October 2006
• US-CERT Quarterly Trends and Analysis Report, Vol. 1, Issue 1
  September 2006

• DHS Cyber Preparedness eNewsletter
  June 2006