Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

CISA, FBI: State-Backed APTs May Be Exploiting Critical Zoho Bug

Vulnerabilities

Cerberus last edited by

The newly identified bug in a Zoho single sign-on and password management tool has been under active attack since early August.

https://threatpost.com/cisa-fbi-state-backed-apts-exploit-critical-zoho-bug/174768/
DISCLAIMER: Please note, that this article is not the work of (or owned by) Hostrisk.com. Attribution and copyright of this article is retained in full by the original author referred to in the Source link above
1 Reply Last reply
Reply Quote 0

Suggested Topics

High-Severity Intel Processor Bug Exposes Encryption Keys
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

2
Views

CVE-2021-0146, arising from a debugging functionality with excessive privileges, allows attackers to read encrypted files.

https://threatpost.com/intel-processor-bug-encryption-keys/176355/
WordPress Plugin Bug Lets Subscribers Wipe Sites
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

2
Views

The flaw, found in the Hashthemes Demo Importer plugin, allows any authenticated user to exsanguinate a vulnerable site, deleting nearly all database content and uploaded media.

https://threatpost.com/wordpress-plugin-bug-wipe-sites/175826/
Windows Zero-Day Actively Exploited in Widespread Espionage Campaign
Vulnerabilities • vulnerabilities • • Cerberus

1

0
Votes

1
Posts

8
Views

The cyberattacks, linked to a Chinese-speaking APT, deliver the new MysterySnail RAT malware to Windows servers.

https://threatpost.com/windows-zero-day-exploited-espionage/175432/

1 / 1

CISA, FBI: State-Backed APTs May Be Exploiting Critical Zoho Bug

Suggested Topics

High-Severity Intel Processor Bug Exposes Encryption Keys Vulnerabilities • vulnerabilities • • Cerberus

WordPress Plugin Bug Lets Subscribers Wipe Sites Vulnerabilities • vulnerabilities • • Cerberus

Windows Zero-Day Actively Exploited in Widespread Espionage Campaign Vulnerabilities • vulnerabilities • • Cerberus

High-Severity Intel Processor Bug Exposes Encryption Keys
Vulnerabilities • vulnerabilities • • Cerberus

WordPress Plugin Bug Lets Subscribers Wipe Sites
Vulnerabilities • vulnerabilities • • Cerberus

Windows Zero-Day Actively Exploited in Widespread Espionage Campaign
Vulnerabilities • vulnerabilities • • Cerberus