[SecurityWeek] Zoho Confirms Zero-Day Authentication Bypass Attacks

Zoho has shipped an urgent patch for an authentication bypass vulnerability in its ManageEngine ADSelfService Plus alongside a warning that the bug is already exploited in attacks.

Tracked as CVE-2021-40539, the security flaw is deemed critical as it could be exploited to take over a vulnerable system.

read more

Source: Read More (SecurityWeek RSS Feed)

You might be interested in …

[ThreatPost] A New Security Paradigm: External Attack Surface Management

All posts, ThreatPost

Advanced EASM solutions are crucial to automating the discovery of the downstream third-party (or fourth-party, or fifth-party, etc.) IT infrastructures that your organization is exposed to, and may be vulnerable to attack, posing a critical risk for your organization. Source: Read More (Threatpost)

Read More

[SecurityWeek] Saudi Aramco Facing $50M Cyber Extortion Over Leaked Data

All posts, Security Week

Saudi Arabia’s state oil giant acknowledged Wednesday that leaked data from the company — files now apparently being used in a cyber-extortion attempt involving a $50 million ransom demand — likely came from one of its contractors. read more Source: Read More (SecurityWeek RSS Feed)

Read More

Daily NCSC-FI news followup 2021-09-23

KRP varoittaa ovelasta Omakanta-huijauksesta toimi näin suojautuaksesi www.is.fi/digitoday/tietoturva/art-2000008285667.html Poliisi kehottaa noudattamaan varovaisuutta pankkitunnuksilla sähköiseen palveluun kirjauduttaessa. VoIP company battles massive ransom DDoS attack www.zdnet.com/article/voip-company-battles-massive-ransom-ddos-attack/ VoIP company battles massive ransom DDoS attack. katso myös www.is.fi/digitoday/art-2000008284709.html FamousSparrow: A suspicious hotel guest www.welivesecurity.com/2021/09/23/famoussparrow-suspicious-hotel-guest/ ESET researchers have uncovered a new cyberespionage group targeting hotels, governments, and private companies worldwide. […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.