CVE-2021-27461
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected webserver applications allow access to stored data that can be obtained by using specially crafted URLs.
Cybercrime , Fraud Management & Cybercrime , Malware as-a-Service Attackers Deploy NanoCore Malware as Part of the Campaign Akshaya Asokan (asokan_akshaya) • March 13, 2021 Email sample containing a .zipx attachment. Source: Trustwave A new malspam campaign is delivering the NanoCore remote access Trojan as a malicious Adobe icon to infect its victims,…
from the so-it-went dept Five Years Ago This week in 2016, the DOJ dropped one of its big cases over iPhone encryption after the defendant suddenly remembered his passcode, while documents revealed that the FBI hid surveillance techniques from federal prosecutors in case they one day became defense lawyers. The FBI was also planning to…
Cybercrime , Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime Kaspersky Describes ‘Operation TunnelSnake’ That Appears to Have China Connection Prajeet Nair (@prajeetspeaks) • May 12, 2021 Architecture of the Moriya rootkit (Source: Kaspersky) An ongoing advanced persistent threat campaign dubbed “Operation TunnelSnake” has been using a Windows rootkit named Moriya to…
Behind the strategies and solutions needed to counter today’s cyber threats are—dedicated cybersecurity researchers. They spend their lives dissecting code and analyzing incident reports to discover how to stop the bad guys. But what drives these specialists? To understand the motivations for why these cybersecurity pros do what they do, we decided to talk with…
Cybercrime , Fraud Management & Cybercrime , Fraud Risk Management Self-Professed ‘King of Fraud’ Aleksandr Zhukov Ran Ads on Fake Sites Mathew J. Schwartz (euroinfosec) • May 31, 2021 Sources: Department of Justice, court documents A Russian man has been convicted of bilking advertisers out of more than $7 million in payments for…
Forensics , Fraud Management & Cybercrime , Fraud Risk Management Banisher of ‘The Kaminsky Bug’ Lauded for His Drive to ‘Make Things Better’ Mathew J. Schwartz (euroinfosec) • April 27, 2021 Dan Kaminsky in an interview conducted at the 2016 RSA Conference in San Francisco (Photo: ISMG) The information security community is mourning…