CVE-2021-27461
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected webserver applications allow access to stored data that can be obtained by using specially crafted URLs.
Similar Posts
WordPress core contributor proposes treating Google FLoC as a security vulnerability
WordPress core contributor proposes treating Google FLoC as a security vulnerability | IT Security News 19. April 2021 Let’s opt every WordPress site out of FLoC. Nice idea, but security update? Really? A proposal by a WordPress core contributor to treat Google’s FLoC ad tech as a security vulnerability, and therefore backport an automatic opt-out…
EXCLUSIVE Microsoft warns thousands of cloud customers of exposed databases
SAN FRANCISCO, Aug 26 (Reuters) – Microsoft (MSFT.O) on Thursday warned thousands of its cloud computing customers, including some of the world’s largest companies, that intruders could have the ability to read, change or even delete their main databases, according to a copy of the email and a cyber security researcher. The vulnerability is in…
Watering Hole Attack Targeted Florida Water Utilities
Cybercrime , Fraud Management & Cybercrime , Next-Generation Technologies & Secure Development Dragos: Oldsmar City Employee Visited Rigged Site, But There’s No Connection to Incident Jeremy Kirk (jeremy_kirk) • May 19, 2021 The city hall of Oldsmar, Florida (Photo: City of Oldsmar) Investigators at industrial cybersecurity specialist Dragos say an employee of the…
New iPhone vulnerability exploited by cyber arms dealers: researchers – Security – Mobility
A cyber surveillance company based in Israel has developed a tool that can break into Apple iPhones with a never-before-seen technique used at least since February, internet security watchdog group Citizen Lab said on Monday. The discovery is important because of the critical nature of the vulnerability, which affects all versions of Apple’s iOS, OSX,…
‘Fear’ Likely Drove Avaddon’s Exit From Ransomware Fray
Cybercrime , Cybercrime as-a-service , Fraud Management & Cybercrime Leading Industrial Nations Call on Moscow to Crack Down on Domestic Cybercriminals Mathew J. Schwartz (euroinfosec) • June 15, 2021 Count of victims of Avaddon, which has targeted businesses and governments across the globe – with Russia remaining a notable exception (Source: Advanced Intelligence)…
New Attack Uses Fake Icon To Deliver Trojan
Cybercrime , Fraud Management & Cybercrime , Malware as-a-Service Attackers Deploy NanoCore Malware as Part of the Campaign Akshaya Asokan (asokan_akshaya) • March 13, 2021 Email sample containing a .zipx attachment. Source: Trustwave A new malspam campaign is delivering the NanoCore remote access Trojan as a malicious Adobe icon to infect its victims,…