Red Cross Attack Attributes to Unpatched Zoho Vulnerability
The Red Cross committee has revealed that the attack that breached its network in January was conducted by a nation-state actor that exploited a Zoho vulnerability. An attack on a…
CVE-2021-40539 ZOHO Bug Exploited By Nation State Actors
Cybersecurity experts has warned of an ongoing cyberespionage campaign that has already compromised at least nine organizations worldwide from critical sectors, including defense, healthcare, and energy. Threat actors exploited a…
ZOHO Zero Day Vulnerability
Zoho has released a security patch to address an authentication bypass vulnerability, tracked as CVE-2021-40539, in its Manage Engine AD Self-Service Plus. The vulnerability is already exploited in attacks in…
Manage Engine hits with a critical flaw
A critical vulnerability (CVE-2020-11552) in ManageEngine ADSelfService Plus, an Active Directory password-reset solution, could allow attackers to remotely execute commands with system level privileges on the target Windows host. CVE-2020-11552…