The ThreatCon is currently at Level 2: Elevated.
On December 10, 2013, Microsoft released its scheduled patch update for December 2013. This month's update covers vulnerabilities in Microsoft Windows, Internet Explorer, Office, Lync, SharePoint server, Microsoft Exchange and GDI+. Eleven security bulletins have been released to address these issues.
Customers are advised to install all applicable updates as soon as possible.
Microsoft Security Bulletin Summary for December 2013
Symantec ThreatCon Rating The Symantec ThreatCon rating is a measurement of the global threat exposure, delivered as part of Symantec DeepSight Threat Management System.
ThreatCon Level 2
Medium : Increased alertness
This condition applies when knowledge or the expectation of attack activity is present, without specific events occurring or when malicious code reaches a moderate risk rating. Under this condition, a careful examination of vulnerable and exposed systems is appropriate, security applications should be updated with new signatures and/or rules as soon as they become available and careful monitoring of logs is recommended. Changes to the security infrastructure are not required.
Symantec DeepSight Threat Management System tracks security events on a global basis, providing early warning of active attacks. With personalized notification triggers and expert analysis, the system enables enterprises to prioritize IT resources in order to better protect critical information assets against a potential attack. To track security threats, it continuously correlates IDS and firewall attack data from the security systems of over 20,000 partners in over 180 countries, plus virus statistics from the Symantec Digital Immune System and many other human intelligence resources. Experts at Symantec analyze the information to identify active attacks and deliver advanced warning with actionable analyses and countermeasures.