OSN August 3, 2021

Title: Bypassing Authentication on Arcadyan Routers With CVE-2021-20090 and Rooting Some Buffalo Date Published: August 3, 2021 https://medium.com/tenable-techblog/bypassing-authentication-on-arcadyan-routers-with-cve-2021-20090-and-rooting-some-buffalo-ea1dd30980c2...

OSN June 1, 2021

Title: New Epsilon Red Ransomware Hunts Unpatched Microsoft Exchange Servers Date Published: May 29, 2021 https://www.bleepingcomputer.com/news/security/new-epsilon-red-ransomware-hunts-unpatched-microsoft-exchange-servers/ Excerpt: “Incident responders at...

OSN April 23, 2021

Title: REvil’s Big Apple Ransomware Gambit Looks to Pay Off Date Published: April 23, 2021 REvil’s Big Apple Ransomware Gambit Looks to Pay Off Excerpt: “Digital Shadows analyst and Russian-language underground forum expert Austin Merritt recently explained...

OSN FEBRUARY 17, 2021

Title: Centreon Says That Recently Disclosed Campaigns Only Targeted Obsolete Versions of Its Open-Source Software Date Published: February 17, 2021 Centreon says that recently disclosed campaigns only targeted obsolete versions of its open-source software...

Compromise of U.S. Water Treatment Facility

Summary On February 5, 2021, unidentified cyber actors obtained unauthorized access to the supervisory control and data acquisition (SCADA) system at a U.S. drinking water treatment plant. The unidentified actors used the SCADA system’s software to increase the amount...