Your one-stop web resource providing safety and security information to manufacturers

GE Clears PulseNET Vulnerabilities

GE has new software to mitigate multiple vulnerabilities in its MDS PulseNET and MDS PulseNET Enterprise, according to a report with NCCIC. The vulnerabilities are an improper authentication, improper restriction of XML external entity reference and a relative path traversal. RELATED STORIES Delta Fixes HMI Software Yokogawa Upgrade for STARDOM Controller Hole BeaconMedaes has Update […]

Delta Fixes HMI Software

Delta Electronics released a new version of its Delta Industrial Automation DOPSoft to mitigate multiple vulnerabilities, according to a report with NCCIC. The vulnerabilities are an out-of-bounds read, heap-based buffer overflow, and a stack-based buffer overflow. RELATED STORIES Yokogawa Upgrade for STARDOM Controller Hole BeaconMedaes has Update for TotalAlert Schneider Fixes Floating License Manager BD […]

Yokogawa Upgrade for STARDOM Controller Hole

Yokogawa recommends an upgrade to new software to mitigate a hard-coded credentials vulnerability in its STARDOM Controllers, according to a report with NCCIC. Successful exploitation of this remotely exploitable vulnerability, discovered by VDLab of Venustech and Dongfang Electric Corporation (DEC), could allow an attacker to gain access to the affected device, which could result in […]

Guide to Help Fight Botnets, Attacks

A guide released for government, civil society and industry actions that would dramatically reduce the threat of botnets and similar cyberattacks. The report, “Enhancing the Resilience of the Internet and Communications Ecosystem Against Botnets and Other Automated, Distributed Threats,” which released Wednesday, responds to a May 2017 Executive Order on Strengthening the Cybersecurity of Federal […]

‘Sustained Improvements’ Needed in Cyber Workforce

There needs to be “immediate and sustained improvements” in the country’s cybersecurity workforce, said a report that released Wednesday. The report, called for by the 2017 Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure, includes findings and recommendations that address both public- and private-sector needs. RELATED STORIES DHS Research Grants for […]

Pin It on Pinterest