White House Says 100 Private Sector Orgs Hit in SolarWinds Campaign

Subscribe to Newsletters

Communications & Collaboration: 2024 (March 9-10)
Interop Digital – Free Cybersecurity Event April 29

More Informa Tech Live Events

White Papers

How To Recon Like An Attacker

Sunburst: Impact and Timeline

451 Cloud Confidence Report

Building the SOC of the Future

4 Steps to Achieving Comprehensive Kubernetes Security

More White Papers

Video

All Videos

Cartoon Contest

Write a Caption, Win an Amazon Gift Card! Click Here

Latest Comment: He’s ordering some cast iron pots online. They’ll be here in two hours and we can start cooking.

Cartoon Archive

Current Issue

2021 Top Enterprise IT TrendsWe’ve identified the key trends that are poised to impact the IT landscape in 2021. Find out why they’re important and how they will affect you today!

Back Issues | Must Reads

Flash Poll

All Polls

Building the SOC of the Future
Digital transformation, cloud-focused attacks, and a worldwide pandemic. The past year has changed the way business works and the way security teams operate. There is no going back.

Download Now!

Assessing Cybersecurity Risk in Today’s Enterprises

0 comments

The Malware Threat Landscape

0 comments

How Data Breaches Affect the Enterprise (2020)

0 comments

More Reports

Twitter Feed

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT’s National Vulnerability Database
CVE-2020-13550
PUBLISHED: 2021-02-17

A local file inclusion vulnerability exists in the installation functionality of Advantech WebAccess/SCADA 9.0.1. A specially crafted application can lead to information disclosure. An attacker can send an authenticated HTTP request to trigger this vulnerability.

CVE-2020-13551
PUBLISHED: 2021-02-17

An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via PostgreSQL executable, an attacker can either replace binary or loaded modules to execute code with NT SYSTEM privilege.

CVE-2020-13552
PUBLISHED: 2021-02-17

An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via multiple service executables in installation folder of WebAccess, an attacker can either replace binary or loaded modules to execu…

CVE-2020-13553
PUBLISHED: 2021-02-17

An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation folder of WebAccess, an attacker can either replace binary or loaded modules to execute code with NT …

CVE-2020-13555
PUBLISHED: 2021-02-17

An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In COM Server Application Privilege Escalation, an attacker can either replace binary or loaded modules to execute code with NT SYSTEM privilege.

The post White House Says 100 Private Sector Orgs Hit in SolarWinds Campaign appeared first on Malware Devil.

https://malwaredevil.com/2021/02/17/white-house-says-100-private-sector-orgs-hit-in-solarwinds-campaign/?utm_source=rss&utm_medium=rss&utm_campaign=white-house-says-100-private-sector-orgs-hit-in-solarwinds-campaign