CVE-2021-27461
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected webserver applications allow access to stored data that can be obtained by using specially crafted URLs.
Cybersecurity Microsoft patches new Exchange CVEs, credits NSA with discovery By Justin Katz Apr 13, 2021 Microsoft on Tuesday released patches for two newly discovered vulnerabilities in on-premise Exchange servers, separate from zero-day exploits found in March, and the company is crediting the National Security Agency with identifying the flaws. “These new…
DHS Orders Pipeline Operators to Report Cyberattacks, Review Security Posture On the heels of the Colonial Pipeline attack, the US Department of Homeland Security aims to force a reticent industry to improve its ability to detect and respond to cybersecurity attacks.
Cryptocurrency Fraud , Cybercrime , Fraud Management & Cybercrime Group-IB: Administrator, Seller and Buyer Data Also Stolen Doug Olenick (DougOlenick) • April 8, 2021 Here’s a guide to the national origin of card data that was stolen from the Swarmshop market. (Source: Group-IB) For the second time in two years, the contents of…
Transportation Security Administration issues second Security Directive WASHINGTON – Today, in response to the ongoing cybersecurity threat to pipeline systems, DHS’s Transportation Security Administration (TSA) announced the issuance of a second Security Directive that requires owners and operators of TSA-designated critical pipelines that transport hazardous liquids and natural gas to implement a number of urgently needed protections against cyber intrusions. “The lives and livelihoods of the American people depend on…
On May 12, 2021, President Biden issued an Executive Order on Improving the Nation’s Cybersecurity following a series of highly publicized cybersecurity incidents during the first four months of his presidency, including the Colonial Pipeline attack, which revealed vulnerabilities within the nation’s infrastructure and information systems. While this is not the first executive order issued…
Threat actors are targeting mission-critical SAP applications unsecured against already patched vulnerabilities, exposing the networks of commercial and government organizations to attacks. Over 400,000 orgs worldwide and 92% of Forbes Global 2000 use SAP’s enterprise apps for supply chain management (SCM), enterprise resource planning (ERP), product lifecycle management (PLM), and customer relationship management (CRM). SAP…