Millions at risk after nationwide CodeRED alert system outage and data breach

A nationwide cyberattack against the OnSolve CodeRED emergency notifications system has prompted cities and counties across the US to warn residents and advise them to change their passwords. CodeRED is used by local governments to deliver fast, targeted alerts during severe weather, evacuations,...

EUVD-2016-1724

Malware in sbrugna...

CVE-2019-19681

Pandora FMS 7.x suffers from remote code execution vulnerability. With an authenticated user who can modify the alert system, it is possible to define and execute commands as root/Administrator. NOTE: The product vendor states that the vulnerability as it is described is not in fact an actual...

CISA Releases Three Industrial Control Systems Advisories

CISA released three Industrial Control Systems ICS advisories on January 21, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-021-01 Traffic Alert and Collision Avoidance System TCAS II ICSA-25-021-02 Siemens...

A new alert system from CISA seems to be effective — now we just need companies to sign up

One of the great cybersecurity challenges organizations currently face, especially smaller ones, is that they dont know what they dont know. Its tough to have your eyes on everything all the time, especially with so many pieces of software running and IoT devices extending the reach of networks...

Traffic Alert and Collision Avoidance System (TCAS) II

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to manipulate safety systems and cause a denial-of-service condition. 2. VULNERABILITY SUMMARY By utilizing software-defined radios and a custom low-latency processing pipeline, RF signals with spoofed...

Digital Alert Systems DASDEC EAS 跨站脚本漏洞

Digital Alert Systems DASDEC EAS is a digital alert system from Digital Alert Systems, Inc. Digital Alert Systems DASDEC EAS suffers from a cross-site scripting vulnerability that can be exploited by a remote attacker to inject arbitrary web script or HTML code via the username field of the login...

poplarbluffrent.com Cross Site Scripting vulnerability OBB-2934015

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Sounding the Alarm on Emergency Alert System Flaws

The Department of Homeland Security DHS is urging states and localities to beef up security around proprietary devices that connect to the Emergency Alert System -- a national public warning system used to deliver important emergency information, such as severe weather and AMBER alerts. The DHS...

The US Emergency Alert System Has Dangerous Flaws

Plus: A crypto-heist extravaganza, a peek at an NSO spyware dashboard, and more...

Spanish Police Arrest 2 Nuclear Power Workers for Cyberattacking the Radiation Alert System

Spanish law enforcement officials have announced the arrest of two individuals in connection with a cyberattack on the country's radioactivity alert network RAR, which took place between March and June 2021. The act of sabotage is said to have disabled more than one-third of the sensors that are...

The October 2009 stability and reliability update for Windows 7 and Windows Server 2008 R2 is available.

The October 2009 stability and reliability update for Windows 7 and Windows Server 2008 R2 is available. If this article does not answer your question, click this button to pose your question to other community members at Microsoft Community:Ask a question Summary Update information This update...

CVE-2019-19681

Pandora FMS 7.x suffers from remote code execution vulnerability. With an authenticated user who can modify the alert system, it is possible to define and execute commands as root/Administrator. NOTE: The product vendor states that the vulnerability as it is described is not in fact an actual...

Remote code execution

DISPUTED Pandora FMS 7.x suffers from remote code execution vulnerability. With an authenticated user who can modify the alert system, it is possible to define and execute commands as root/Administrator. NOTE: The product vendor states that the vulnerability as it is described is not in fact an...

CVE-2019-19681

Pandora FMS 7.x is reported to have a remote code execution vulnerability (CVE-2019-19681) that can be triggered by an authenticated user who can modify the alert system, allowing execution of commands as root/Administrator. The Red Hat entry and other sources reiterate the issue and include vend...

Hackers Infiltrate Early Warning Network System to Send Spam

Hackers were able to access the Early Warning Network, a large-scale emergency warning system in Australia, and then send alarming spam messages to subscribers. According to the Early Warning Network EWN, a hacker accessed its system over the weekend and then sent “nuisance messages” via text,...

Code injection

Bitcoin Core before v0.13.0 allows denial of service memory exhaustion triggered by the remote network alert system deprecated since Q1 2016 if an attacker can sign a message with a certain private key that had been known by unintended actors, because of an infinitely sized map. This affects othe...

CVE-2016-10725

In Bitcoin Core before v0.13.0, a non-final alert is able to block the special "final alert" which is supposed to override all other alerts because operations occur in the wrong order. This behavior occurs in the remote network alert system deprecated since Q1 2016. This affects other uses of the...

Design/Logic Flaw

In Bitcoin Core before v0.13.0, a non-final alert is able to block the special "final alert" which is supposed to override all other alerts because operations occur in the wrong order. This behavior occurs in the remote network alert system deprecated since Q1 2016. This affects other uses of the...

CVE-2016-10725

In Bitcoin Core before v0.13.0, a non-final alert is able to block the special "final alert" which is supposed to override all other alerts because operations occur in the wrong order. This behavior occurs in the remote network alert system deprecated since Q1 2016. This affects other uses of the...