Updated APT Exploitation of ManageEngine ADSelfService Plus Vulnerability

19 November 2021

The Federal Bureau of Investigation (FBI), CISA, and Coast Guard Cyber Command (CGCYBER) have updated the Joint Cybersecurity Advisory (CSA) published on September 16, 2021, which details the active exploitation of an authentication bypass vulnerability (CVE-2021-40539) in Zoho ManageEngine ADSelfService Plus—a self-service password management and single sign-on solution. The update provides details on a suite of tools APT actors are using to enable this campaign: Dropper:

Read full article on US-CERT

Date:

19 November 2021

Categorie(s):

NEWS

Tag(s):

APT, Exploitation, ManageEngine, Plus, Security Pro

In memoriam: Steven Young, respected CISO and former Cybersecurity Collaborative VP19 April 2024
The Biggest Deepfake Porn Website Is Now Blocked in the UK19 April 2024
The MSSP perspective: CISO insights into stronger security19 April 2024
66% of IT leaders doubt the government can defend against cyberwarfare19 April 2024
FBI chief says Chinese hackers have infiltrated critical US infrastructure19 April 2024