Saturday, December 5, 2020
DHS

WECON LeviStudioU (Update C)

This updated advisory is a follow-up to the advisory update titled ICSA-20-238-03 WECON LeviStudioU (Update B) that was published October 29, 2020, to the ICS webpage on us-cert.cisa.gov. This advisory contains mitigations for a Stack-based Buffer Overflow vulnerability in the...
DHS

National Instruments CompactRIO

This advisory contains mitigations for an Incorrect Permission Assignment for Critical Resource vulnerability in National Instruments CompactRIO real-time embedded industrial controllers.    
DHS

Wibu-Systems CodeMeter (Update D)

This updated advisory is a follow-up to the advisory update titled ICSA-20-203-01 Wibu-Systems CodeMeter (Update C) that was published October 15, 2020, to the ICS webpage on us-cert.gov. This advisory contains mitigations for Buffer Access with Incorrect Length Value,...
DHS

Schneider Electric EcoStruxure Operator Terminal Expert runtime (Vijeo XD)

This advisory contains mitigations for an  Improper Privilege Management vulnerability in Schneider Electric EcoStruxure Operator Terminal Expert products.
DHS

Rockwell Automation FactoryTalk Linx

This advisory contains mitigations for Improper Input Validation, and Heap-based Buffer Overflow vulnerabilities in Rockwell Automation FactoryTalk Linx software.
DHS

Fuji Electric V-Server Lite

This advisory contains mitigations for an Out-of-bounds Write vulnerability in some versions of the Fuji Electric V-Server Lite data collection and management service.
DHS

Mitsubishi Electric MELSEC iQ-R Series

This advisory contains mitigations for an Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric's MELSEC iQ-R series CPU module products.
DHS

Johnson Controls Sensormatic Electronics American Dynamics victor Web Client

This advisory contains mitigations for an Improper Authorization vulnerability in Sensormatic Electronics (a subsidiary of Johnson Controls) American Dynamics victor Web Client products.
DHS

Paradox IP150

This advisory contains mitigations for Stack-based Buffer Overflow, and Classic Buffer Overflow vulnerabilities in Paradox IP150 Internet module LAN devices.
DHS

Real Time Automation EtherNet/IP

This advisory contains mitigations for a Stack-based Buffer Overflow vulnerability in Real Time Automation 499ES EtherNet/IP Adaptor Source Code, a TCP/IP stack.
DHS

Schneider Electric Interactive Graphical SCADA System (IGSS)

This advisory contains mitigations for Improper Restriction of Operations within the Bounds of a Memory Buffer, Out-of-bounds Write, and Out-of-bounds Read vulnerabilities in Schneider Electric's Interactive Graphical SCADA System (IGSS).
DHS

BD Alaris 8015 PC Unit and BD Alaris Systems Manager

This advisory contains mitigations for an Improper Authentication vulnerability in BD Alaris 8015 PC Unit and BD Alaris Systems Manager. BD Alaris is an infusion pump system. 
DHS

Mitsubishi Electric MELSEC iQ-R Series

This advisory contains mitigations for an Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series CPU modules.
DHS

OSIsoft PI Interface for OPC XML-DA

This advisory contains mitigations for a Numeric Errors vulnerability in the OSIsoft PI Interface for OPC XML-DA data client.
DHS

OSIsoft PI Vision

This advisory contains mitigations for Cross-site Scripting, and Incorrect Authorization vulnerabilities in OSIsoft's PI Vision web-client visualization tool.
DHS

Schneider Electric PLC Simulator for EcoStruxure Control Expert

This advisory contains mitigations for an Improper Check for Unusual or Exceptional Conditions vulnerability in Schneider Electric's PLC Simulators.
DHS

SIMATIC S7-300 CPUs and SINUMERIK Controller

This advisory contains mitigations for an Uncontrolled Resource Consumption vulnerability in Siemens SIMATIC S7-300 CPUs and SINUMERIK controller.
DHS

Siemens SCALANCE W 1750D

This advisory contains mitigations for an Improper Input Validation vulnerability in Siemens SCALANCE W 1750D industrial wireless LAN.
DHS

Siemens SIMATIC S7-300 and S7-400 CPUs (Update B)

This updated advisory is a follow-up to the advisory update titled ICSA-20-252-02 Siemens SIMATIC S7-300 and S7-400 CPUs (Update A) that was published October 13, 2020, to the ICS webpage to us-cert.cisa.gov. This advisory contains mitigations for an Insufficiently Protected...
DHS

Siemens UMC Stack (Update C)

This updated advisory is a follow-up to the advisory update titled ICSA-20-196-05 Siemens UMC Stack (Update B) that was published September 8, 2020, to the ICS webpage on us-cert.cisa.gov. This advisory contains mitigations for Unquoted Search Path or Element,...

Top 20 Predictions Of How AI Is Going To Improve Cybersecurity In 2021

What 20 Leading Cybersecurity Experts Are Predicting For 2021
SecurityWeek

Italy Says Two Arrested for Defense Data Theft

Two people have been arrested for stealing defense data from the Italian aerospace and electronics group Leonardo, the interior ministry said on Saturday. The company has a wide range of activities from naval electronics, network and protection systems, electronic warfare...

The US Used the Patriot Act to Justify Logging Website Users

Plus: Better Twitter two-factor, a Spotify hack, and more of the week’s top security news.
ZDNet

Ransomware hits helicopter maker Kopter

Data from Kopter's internal network has been published on the LockBit gang's blog, hosted on the dark web.
ZDNet

Ransomware gangs are now cold-calling victims if they restore from backups without paying

Tactic used since August by ransomware gangs like Sekhmet, Maze, Conti, and Ryuk.