[SecurityWeek] Zoho Confirms Zero-Day Authentication Bypass Attacks

Zoho has shipped an urgent patch for an authentication bypass vulnerability in its ManageEngine ADSelfService Plus alongside a warning that the bug is already exploited in attacks.

Tracked as CVE-2021-40539, the security flaw is deemed critical as it could be exploited to take over a vulnerable system.

read more

Source: Read More (SecurityWeek RSS Feed)

You might be interested in …

[ZDNet] These remote work job scams promise easy money but aim to steal your savings

All posts, ZDNet

Cybersecurity researchers warn about thousands of emails being sent every day that offer people easy-to-do, high-paying remote work, only for criminals to scam applicants out of their savings. Source: Read More (Latest topics for ZDNet in Security)

Read More

[HackerNews] Cisco Releases Security Patches for TelePresence, RoomOS and Umbrella VA

All posts, HackerNews

Networking equipment maker Cisco has released security updates to address three high-severity vulnerabilities in its products that could be exploited to cause a denial-of-service (DoS) condition and take control of affected systems. The first of the three flaws, CVE-2022-20783 (CVSS score: 7.5), affects Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software, and stems Source: Read […]

Read More

[ZDNet] Microsoft’s latest Windows 11 test build adds new group policies, drops SMB1 enablement by default

All posts, ZDNet

Windows Insiders in the Dev and Beta channels can check out Windows 11 Build 22610, which adds a bunch of new policies for IT admins and removes SMB1 support by default for many users. Source: Read More (Latest topics for ZDNet in Security)

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.