CVE-2021-27461
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected webserver applications allow access to stored data that can be obtained by using specially crafted URLs.
The U.S. Securities and Exchange Commission (SEC) has opened an investigation into last year’s SolarWinds hack to determine whether some companies failed to disclose that they had been affected by the breach, Reuters reported, citing people familiar with the investigation. According to the sources, the SEC sent investigative letters last week to a number of…
Application Security , Cybercrime , Device Identification Swiss Citizen Allegedly Leaked Victims’ Stolen Data, Including Source Code Jeremy Kirk (jeremy_kirk) , Mathew J. Schwartz (euroinfosec) • March 19, 2021 A Swiss national who recently highlighted flaws in internet-connected Verkada surveillance cameras has been charged with hacking. See Also: Top 50 Security Threats …
Germany was the top European country, occupying sixth place in the global rankings. Iran, Italy, the United Kingdom and, lastly, Saudi Arabia complete the 10 most-affected nations. “We see the number of users affected by stalkerware has remained high and we detect new samples every day,” said Victor….
A hacker who stole more than $600 million in one of the largest ever cryptocurrency heists has returned over half of what they took. Poly Network, a decentralised finance (DeFi) platform, said the hacker had sent back $256 million on Binance Smart Chain, $3.3 million in Ethereum and $1 million in Polygon as of 11th…
The City of Tulsa, Oklahoma, has suffered a ransomware attack that forced the City to shut down its systems to prevent the further spread of the malware. Tulsa is the second-largest city in Oklahoma, with a population of approximately 400,000 people. Over the weekend, threat actors deployed a ransomware attack on the City of Tulsa’s…
Endpoint Security , Governance & Risk Management , IT Risk Management Flaw Could Enable Access to Secret Encryption Key Prajeet Nair (@prajeetspeaks) • March 1, 2021 Rockwell’s Studio 5000 Logix Designer is among products affected by a vulnerability. (Source: Rockwell) A critical authentication bypass vulnerability could enable hackers to remotely compromise programmable logic…