Denmark Accuses Russia of Conducting Two Cyberattacks

News: The Danish Defence Intelligence Service DDIS announced on Thursday that Moscow was behind a cyber-attack on a Danish water utility in 2024 and a series of distributed denial-of-service DDoS attacks on Danish websites in the lead-up to the municipal and regional council elections in November...

Update 22.16 for Microsoft Dynamics 365 Business Central 2023 Release Wave 1 (Application Build 22.16.64731, Platform Build 22.0.64727)

Update 22.16 for Microsoft Dynamics 365 Business Central 2023 Release Wave 1 Application Build 22.16.64731, Platform Build 22.0.64727 Overview This update replaces previously released updates. You should always install the latest update. This update also fixes a vulnerability. For more informatio...

New Findings Challenge Attribution in Denmark's Energy Sector Cyberattacks

The cyber attacks targeting the energy sector in Denmark last year may not have had the involvement of the Russia-linked Sandworm hacking group, new findings from Forescout show. The intrusions, which targeted around 22 Danish energy organizations in May 2023, occurred in two distinct waves, one...

search.tv2.dk Cross Site Scripting vulnerability OBB-3331788

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Secomea SiteManager 安全漏洞

Secomea SiteManager is a software application from Secomea, Denmark. It provides a remote maintenance function for industrial equipment. A security vulnerability exists in Secomea SiteManager that stems from the presence of a communication channel that improperly restricts the intended endpoints...

How Denmark’s Welfare State Became a Surveillance Nightmare

Once praised for its generous social safety net, the country now collects troves of data on welfare claimants...

Pro-Russian Hacktivist Group NoName057(16) Launches Cyber Attacks on Ukraine and NATO Organizations

Threat Level Actors Report For a detailed threat advisory, download the pdf file here Summary NoName05716 is a pro-Russian hacktivist group that has been conducting a campaign of DDoS attacks on Ukraine and NATO organizations since the early days of the war in Ukraine. The group has targeted...

DDoS Attacks Hit Denmark Central Bank and 7 Private Banks

By Habiba Rashid Along with the websites of the central bank, Bankdata—a company that develops IT solutions for the financial industry—was also targeted by a DDoS attack. This is a post from HackRead.com Read the original post: DDoS Attacks Hit Denmark Central Bank and 7 Private Banks...

studenterguiden.dk Cross Site Scripting vulnerability OBB-2829370

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Secomea GateManager 安全漏洞

Secomea GateManager is a remote access server product from the Danish company Secomea.A security vulnerability exists in versions prior to Secomea GateManager 9.7, which stems from an unprotected alternate channel vulnerability in the debug console. An attacker could use this vulnerability to...

Modbus Tools Modbus Slave

1. EXECUTIVE SUMMARY CVSS v3 5.5 ATTENTION: Low attack complexity/public exploits are available Vendor: Modbus Tools Equipment: Modbus Slave Vulnerability : Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could crash the application when inputting a...

amnesty.dk Improper Access Control vulnerability OBB-2157861

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Report: Danish Secret Service Helped NSA Spy On European Politicians

The U.S. National Security Agency NSA used a partnership with Denmark's foreign and military intelligence service to eavesdrop on top politicians and high-ranking officials in Germany, Sweden, Norway, and France by tapping into Danish underwater internet cables between 2012 and 2014. Details of t...

Secomea GateManager

1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Secomea Equipment: GateManager Vulnerabilities: Improper Neutralization of Null Byte or NUL Character, Off-by-one Error, Use of Hard-coded Credentials, Use of Password Hash with Insufficient...

simmentaldenmark.dk Cross Site Scripting vulnerability OBB-1224914

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Grundfos CIM 500

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Grundfos Pumps Corporation Equipment: CIM 500 Vulnerabilities: Missing Authentication for Critical Function, Unprotected Storage of Credentials 2. RISK EVALUATION Successful exploitation of these...

Denmark, Sweden, Germany, the Netherlands and France SIGINT Alliance

This paper describes a SIGINT and code-breaking alliance between Denmark, Sweden, Germany, the Netherlands and France called Maximator: Abstract: This article is first to report on the secret European five-partner sigint alliance Maximator that started in the late 1970s. It discloses the name...

Cumulative Update 53 for Microsoft Dynamics NAV 2016 (Build 51775)

Cumulative Update 53 for Microsoft Dynamics NAV 2016 Build 51775 This article applies to Microsoft Dynamics NAV 2016 for all countries and all language locales.A remote code execution vulnerability exists in Microsoft Dynamics NAV. A user who has the permission to access certain features that...

ISS World Hit with Malware Attack that Shuts Down Global Computer Network

A Denmark-based global facility-management company was hit with a major cyber attack this week that shut down its worldwide computer systems for a few days and disrupted operations across its global network of employees. ISS World cut off access to shared IT services across its customer sites and...

7-Technologies IGSS Vulnerabilities

Overview This advisory is a follow-up to ICS-ALERT-11-080-03 7-Technologies IGSS Vulnerabilities, published on the ICS-CERT Web site on March 20, 2011. An independent researcher has identified eight vulnerabilities in 7-Technologies 7T IGSS SCADA human-machine interface HMI application. Each of t...