Iowa Hospital Alerts 60K Individuals Affected by June Data Breach

Subscribe to Newsletters

Get Your Pass | Interop Digital December 3rd FREE Event
Interop Digital December 3rd FREE Event on Cloud & Networking

More Informa Tech Live Events

White Papers

Why Chatbots Are So Popular Right Now

Fact-Check Your Ransomware Assumptions

A Step-by-Step Guide to Shifting Left and Embracing a True DevSecOps Mentality

The Malware Threat Landscape

All In, Online Gaming & Gambling

More White Papers

Video

All Videos

Cartoon Contest

Write a Caption, Win an Amazon Gift Card! Click Here

Latest Comment: A GONG is as good as a cyber attack.

Cartoon Archive

Current Issue

2021 Top Enterprise IT TrendsWe’ve identified the key trends that are poised to impact the IT landscape in 2021. Find out why they’re important and how they will affect you today!

Back Issues | Must Reads

Flash Poll

All Polls

The Malware Threat Landscape
Download this report to learn about the real makeup of online threats, as reported by the defenders who see them every day.

Download Now!

How Data Breaches Affect the Enterprise (2020)

0 comments

How IT Security Organizations are Attacking the Cybersecurity Problem

0 comments

Special Report: Understanding Your Cyber Attackers

0 comments

More Reports

Twitter Feed

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT’s National Vulnerability Database
CVE-2020-7566
PUBLISHED: 2020-11-19

A CWE-334: Small Space of Random Values vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker to break the encryption keys when the attacker has captured the traffic between EcoStruxure Machine – Basic software and Modicon M221 controller.

CVE-2020-7567
PUBLISHED: 2020-11-19

A CWE-311: Missing Encryption of Sensitive Data vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker to find the password hash when the attacker has captured the traffic between EcoStruxure Machine – Basic software and Modicon M221 controller and broke th…

CVE-2020-7568
PUBLISHED: 2020-11-19

A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Modicon M221 (all references, all versions) that could allow non sensitive information disclosure when the attacker has captured the traffic between EcoStruxure Machine – Basic software and Modicon M221 con…

CVE-2020-7569
PUBLISHED: 2020-11-19

A CWE-434 Unrestricted Upload of File with Dangerous Type vulnerability exists in EcoStruxure Building Operation WebReports V1.9 – V3.1 that could cause an authenticated remote user being able to upload arbitrary files due to incorrect verification of user supplied files and achieve remote code exec…

CVE-2020-7570
PUBLISHED: 2020-11-19

A CWE-79 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting Stored) vulnerability exists in EcoStruxure Building Operation WebReports V1.9 – V3.1 that could cause an authenticated remote user being able to inject arbitrary web script or HTML due to incorrect sanitizati…

The post Iowa Hospital Alerts 60K Individuals Affected by June Data Breach appeared first on Malware Devil.

https://malwaredevil.com/2020/11/19/iowa-hospital-alerts-60k-individuals-affected-by-june-data-breach/?utm_source=rss&utm_medium=rss&utm_campaign=iowa-hospital-alerts-60k-individuals-affected-by-june-data-breach