Homeland Security Today

APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus

This joint advisory is the result of analytic efforts between the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) to highlight the cyber threat ...
Threat Post

FBI: Another Zoho ManageEngine Zero-Day Under Active Attack

APT attackers are using a security vulnerability in ManageEngine Desktop Central to take over servers, deliver malware and establish network persistence. Another Zoho ManageEngine zero-day ...
Bleeping Computer

Hackers use in-house Zoho ServiceDesk exploit to drop webshells

An advanced persistent threat (APT) group that had been exploiting a flaw in the Zoho ManageEngine ADSelfService Plus software has pivoted to leveraging a different vulnerability in another Zoho ...
Business Wire

ManageEngine ServiceDesk Plus Receives PinkVERIFY 2011 Certification for IT Asset Management

PLEASANTON, Calif.--(BUSINESS WIRE)--ManageEngine, the IT management division of Zoho Corporation, today announced that the IT asset management (ITAM) module in its flagship IT service desk software, ...
Homeland Security Today

USCG, FBI, CISA Alert on Vulnerability in ManageEngine ADSelfService Plus

This joint advisory is the result of analytic efforts between the Federal Bureau of Investigation (FBI), United States Coast Guard Cyber Command (CGCYBER), and the Cybersecurity and Infrastructure ...
Threat Post

Zoho ManageEngine Password Manager Zero-Day Gets a Fix, Amid Attacks

An authentication bypass vulnerability in the ManageEngine ADSelfService Plus platform leading to remote code execution offers up the keys to the corporate kingdom. A critical security vulnerability ...