CVE-2021-27461
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected webserver applications allow access to stored data that can be obtained by using specially crafted URLs.
Vulnerabilities found in older version of WhatsApp | IT Security News 19. April 2021 Cert-In, the Indian cybersecurity watchdog has recently issued a ‘high’ severity rating against WhatsApp and WhatsApp Business. The emergency response team has reported finding ‘multiple’ vulnerabilities within the mobile application, which could give hackers access to sensitive information. A vulnerability note…
Suspected Russian hackers gained access to email accounts belonging to the Trump administration’s head of the Department of Homeland Security and members of the department’s cybersecurity staff whose jobs included hunting threats from foreign countries, The Associated Press has learned. The intelligence value of the hacking of then-acting Secretary Chad Wolf and his staff is…
MANSFIELD, Ohio – The Department of the Air Force announced yesterday it has identified Ohio’s Mansfield-Lahm Air National Guard Base as the preferred location for a new Cyber Warfare Wing mission. The transformation will support Air Combat Command’s future requirements and result in operational mission changes, including an increase of approximately 175 Airmen and associated…
Operation Dianxun Overview In a recent report the McAfee Advanced Threat Research (ATR) Strategic Intelligence team disclosed an espionage campaign, targeting telecommunication companies, named Operation Diànxùn. The tactics, techniques and procedures (TTPs) used in the attack are like those observed in earlier campaigns publicly attributed to the threat actors RedDelta and Mustang Panda. Most probably…
An ongoing campaign has been found to leverage a network of websites acting as a “dropper as a service” to deliver a bundle of malware payloads to victims looking for “cracked” versions of popular business and consumer applications. “These malware included an assortment of click fraud bots, other information stealers, and even ransomware,” researchers from…
Anti-Phishing, DMARC , Email Security & Protection , Fraud Management & Cybercrime Meanwhile, OneTrust Receives Additional Funding Doug Olenick (DougOlenick) • April 10, 2021 Email security provider Cofense and data security firm StrikeForce Technologies both have announced acquisitions. Meanwhile data protection firm OneTrust received additional funding. See Also: The Guide to Just-In-Time Privileged…