The Reporting and Analysis Centre for Information Assurance (MELANI) is commissioned by the Federal Council to protect critical infrastructures in Switzerland. MELANI was set up for the early detection and management of threats, as well as to support the operators of critical infrastructures during a crisis. The MELANI website is also aimed at private computer and internet users, as well as small and medium-sized enterprises (SMEs) in Switzerland.
News 20.01.2020: Microsoft warns about a critical vulnerability (CVE-2020-0674)in Internet Explorer versions 9, 10 and 11, which allows attackers to execute malicious code on affected systems. MELANI recommends to use other browsers until a patch is available from Microsoft.
Concerning the Citrix vulnerability, MELANI currently has knowledge of 14 infected companies in Switzerland. The number of infected servers could still increase. MELANI assumes that all vulnerable systems are infected which don't have applied the recommended workaround by Citrix.
MELANI recommends shutting down the Citrix servers whenever possible. Since the workaround does not work with all versions, MELANI recommends checking the workaround according to the information provided by Citrix (https://support.citrix.com/article/CTX267027).
Preparations should also be made to ensure that the Citrix patch can be applied as soon as it is available.
The manufacturer of Citrix Software informed the public about a vulnerability on December 17, 2019: https://support.citrix.com/article/CTX267027
The National Cyber Security Centre (NCSC.ch), of which GovCERT.ch is a part, has contacted critical infrastructure operators and SMEs about this issue. Since the vulnerability can be exploited for attacks in the meantime, companies are urged to take the precautions recommended by Citrix immediately.
MELANI is becoming the National Cyber Security Centre
To boost the Confederation's activities in the area of cyber-risks, on 30 January 2019 the Federal Council decided to set up a competence centre for cybersecurity, to build on existing skills and specialist units such as the already well established MELANI.
The work on setting up this National Cyber Security Centre are well advanced. In mid-August, the Federal Cyber Security Delegate, Florian Schütz, took up his post at the head of the National Cyber Security Centre. During the setup phase important information on the Centre can be found under "about the NCSC".
National contact point
The NCSC is the first point of contact for questions on cybersecurity. Its "national contact point" is based on MELANI. As before, reports on cyberincidents will be received and analysed by the MELANI team. However, from January 2020, this will take place via the new label "ncsc.ch".