Homeland Security Today

APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus

This joint advisory is the result of analytic efforts between the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) to highlight the cyber threat ...
Bleeping Computer

Hackers use in-house Zoho ServiceDesk exploit to drop webshells

An advanced persistent threat (APT) group that had been exploiting a flaw in the Zoho ManageEngine ADSelfService Plus software has pivoted to leveraging a different vulnerability in another Zoho ...
Business Wire

ManageEngine ServiceDesk Plus Receives PinkVERIFY 2011 Certification for IT Asset Management

PLEASANTON, Calif.--(BUSINESS WIRE)--ManageEngine, the IT management division of Zoho Corporation, today announced that the IT asset management (ITAM) module in its flagship IT service desk software, ...
Threat Post

FBI: Another Zoho ManageEngine Zero-Day Under Active Attack

APT attackers are using a security vulnerability in ManageEngine Desktop Central to take over servers, deliver malware and establish network persistence. Another Zoho ManageEngine zero-day ...
JD Supra

Joint CISA/FBI Alert on Vulnerability in Zoho ManageEngine ServiceDesk Plus

On December 6, 2021, the Cybersecurity & Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) updated a previously issued Alert entitled APT Actors Exploiting ...