Bulletins | CERT@VDE

…
95
96
97 (current)
98
99
…

February 2021

17.02.2021

US CERT

AA21-048A: AppleJeus: Analysis of North Korea’s Cryptocurrency Malware

Title

AA21-048A: AppleJeus: Analysis of North Korea’s Cryptocurrency Malware

Published

Feb. 17, 2021, 5 p.m.

URL

https://us-cert.cisa.gov/ncas/alerts/aa21-048a

Summary

Original release date: February 17, 2021 | Last revised: March 2, 2021SummaryThis Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. This joint advisory is the result of analytic efforts among the Federal Bureau ...

11.02.2021

US CERT

AA21-042A: Compromise of U.S. Water Treatment Facility

Title

AA21-042A: Compromise of U.S. Water Treatment Facility

Published

Feb. 11, 2021, 8:15 p.m.

URL

https://us-cert.cisa.gov/ncas/alerts/aa21-042a

Summary

Original release date: February 11, 2021 | Last revised: February 12, 2021SummaryOn February 5, 2021, unidentified cyber actors obtained unauthorized access to the supervisory control and data acquisition (SCADA) system at a U.S. drinking water treatment facility. The unidentified actors used the SCADA system’s software to increase the amount of ...

11.02.2021

US CERT (ICS)

Multiple Embedded TCP/IP stacks

Title

Multiple Embedded TCP/IP stacks

Published

Feb. 11, 2021, 4:10 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-042-01

Summary

This advisory contains mitigations for Use of Insufficiently Random Values vulnerabilities in Nut/Net, CycloneTCP, NDKTCPIP, FNET, uIP-Contiki-OS, uC/TCP-IP, uIP-Contiki-NG, uIP, picoTCP-NG, picoTCP, MPLAB Net, Nucleus NET, Nucleus ReadyStart TCP/IP stacks.

11.02.2021

US CERT (ICS)

Rockwell Automation DriveTools SP and Drives AOP

Title

Rockwell Automation DriveTools SP and Drives AOP

Published

Feb. 11, 2021, 4:05 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-042-02

Summary

This advisory contains mitigations for an Uncontrolled Search Path Element vulnerability in Rockwell Automation DriveTools SP and Drives AOP software.

11.02.2021

US CERT (ICS)

Wibu-Systems CodeMeter (Update E)

Title

Wibu-Systems CodeMeter (Update E)

Published

Feb. 11, 2021, 4 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-20-203-01

Summary

This updated advisory is a follow-up to the advisory update titled ICSA-20-203-01 Wibu-Systems CodeMeter (Update D) that was published December 3, 2020, to the ICS webpage on us-cert.gov. This advisory contains mitigations for Buffer Access with Incorrect Length Value, Inadequate Encryption Strength, Origin Validation Error, Improper Input Validation, Improper Verification ...

09.02.2021

US CERT (ICS)

GE Digital HMI/SCADA iFIX

Title

GE Digital HMI/SCADA iFIX

Published

Feb. 9, 2021, 5:50 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-040-01

Summary

This advisory contains mitigations for Incorrect Permission Assignment for Critical Resource vulnerabilities in the GE Digital HMI/SCADA iFIX software component.

09.02.2021

US CERT (ICS)

Siemens SINEMA Server & SINEC NMS

Title

Siemens SINEMA Server & SINEC NMS

Published

Feb. 9, 2021, 5:40 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-040-03

Summary

This advisory contains mitigations for a Path Traversal vulnerability in Siemens SINEMA server and SINEC NMS products.

09.02.2021

US CERT (ICS)

Siemens TIA Administrator

Title

Siemens TIA Administrator

Published

Feb. 9, 2021, 5:30 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-040-05

Summary

This advisory contains mitigations for an Improper Access Control vulnerability in Siemens TIA Administrator products.

09.02.2021

US CERT (ICS)

Siemens SCALANCE W780 and W740

Title

Siemens SCALANCE W780 and W740

Published

Feb. 9, 2021, 5:20 p.m.

URL

https://us-cert.cisa.gov/ics/advisories/icsa-21-040-07

Summary

This advisory contains mitigations for an Allocation of Resources Without Limits or Throttling vulnerability in Siemens SCALANCE W780 and W740 industrial wireless LAN products.

Last Updates

By Source

Archive

2024

2023

2022

2021

2020

2019

2018

2017

Feeds