CVE-2021-27461
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected webserver applications allow access to stored data that can be obtained by using specially crafted URLs.
Application Security , Breach Notification , Cyberwarfare / Nation-State Attacks Breach Notification Report Reveals Some PII Could Have Been Exposed Scott Ferguson (Ferguson_Writes) • September 16, 2021 The Republican Governors Association was one of several U.S. organizations targeted in March when a nation-state group took advantage of vulnerabilities in Microsoft Exchange email servers,…
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service White House Has Been Identifying Top Suspects and Sharing Intelligence With Moscow Mathew J. Schwartz (euroinfosec) • September 15, 2021 U.S. President Joe Biden and Russian President Vladimir Putin meeting in Geneva on June 17, 2021 (Photo: Ministry of Foreign Affairs of Russia via Twitter/CC)…
Feb 23 (Reuters) – Top executives at Texas-based software company SolarWinds, digital giant Microsoft and cybersecurity firms FireEye and CrowdStrike are expected on Tuesday to defend their companies’ responses to a sprawling series of breaches blamed on Russian hackers when they face the U.S. Senate’s Select Committee on Intelligence. The four are expected to argue…
McAfee sells its Enterprise business for $4 billion | IT Security News 9. March 2021 McAfee announced it has entered into a definitive agreement to sell its Enterprise business to a consortium led by Symphony Technology Group (STG) in an all-cash transaction for $4.0 billion. The transaction is expected to close by the end of…
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Company’s IT Team Was Unaware the VPN Exploited to Gain Entry Existed Doug Olenick (DougOlenick) • June 8, 2021 Colonial Pipeline Co. CEO Joseph Blount testifying on Tuesday before the Senate Homeland Security and Governmental Affairs Committee Colonial Pipeline Co. CEO Joseph Blount defended his…
As announced company Zerodium, it became more interested in the exploits for vulnerabilities in WordPress, allowing remote code execution. For these exploits, she is even ready to pay three times more than before – $ 300 thousand. However, exploit sellers should hurry up as the offer is only valid for a limited period of time….