CVE-2021-27461
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected webserver applications allow access to stored data that can be obtained by using specially crafted URLs.
Similar Posts
18 Companies to Participate in NIST ‘Zero Trust’ Project
Governance & Risk Management , NIST Standards , Standards, Regulations & Compliance Firms Will Demonstrate Their Architectures to Help Agency Develop Guidance Dan Gunderman (dangun127) • July 26, 2021 The National Institute of Standards and Technology has selected 18 technology companies to demonstrate “zero trust” security architectures as it prepares to draft guidance…
Personal Data for Half-Billion Facebook Users Found on Hacker Website – CBS San Francisco
MENLO PARK (AP) — Details from more than 500 million Facebook users have been found available on a website for hackers. The information appears to be several years old but it is another example of the vast amount of information collected by Facebook and other social media sites and the limits to how secure that…
Cyberattack on U.S. pipeline is linked to criminal gang
WASHINGTON — The federal government is working with the Georgia-based company that shut down a major pipeline transporting fuel across the East Coast after a ransomware attack, the White House says. The government is planning for various scenarios and working with state and local authorities on measures to mitigate any potential supply issues, officials said…
NSA, CISA, issue guidance on Protective DNS services
The National Security Agency (NSA) and Cybersecurity and Infrastructure Agency (CISA) released a joint information sheet Thursday that offers guidance on the benefits of using a Protective Domain Name System (PDNS). A PDNS service uses existing DNS protocols and architecture to analyze DNS queries and mitigate threats. It leverages various open source, commercial, and governmental…
QNAP works on patches for OpenSSL bugs impacting its NAS devices
Network-attached storage (NAS) maker QNAP is investigating and working on security updates to address remote code execution (RCE) and denial-of-service (DoS) vulnerabilities patched by OpenSSL last week. The security flaws tracked as CVE-2021-3711 and CVE-2021-3712, impact QNAP NAS device running QTS, QuTS hero, QuTScloud, and HBS 3 Hybrid Backup Sync (a backup and disaster recovery…
World’s biggest meat supplier, JBS, suffers cyber attack • Graham Cluley
The world’s largest meat supplier, JBS, says that it has suffered a cyber attack against its IT systems in North America and Australia impacting its ability to “process” thousands of cattle, sheep, and pigs. The security incident, first spotted on Sunday, has not been officially confirmed to a be a ransomware attack – but I…