https://community.isc2.org/t5/Threats/Microsoft-SysAid-zero-day-flaw-exploited-in-Clop-ransomware/m-p/64405#M961 And now they’ve added the Clop deployment service… maybe they should call it Clip?<BR /><BR />Always keep Tomcat and other components up to date, just in case.<BR /><BR />When you build your product always include abuse case testing based on what attackers want.<BR /><BR /><A href="https://profero.io/posts/sysaidonpremvulnerability/" target="_blank">https://profero.io/posts/sysaidonpremvulnerability/</A> Thu, 09 Nov 2023 23:51:22 GMT Early_Adopter 2023-11-09T23:51:22Z https://community.isc2.org/t5/Threats/Microsoft-SysAid-zero-day-flaw-exploited-in-Clop-ransomware/m-p/64398#M959 <P>Dear All,</P><P>&nbsp;</P><P>Threat actors are exploiting a&nbsp;zero-day vulnerability in the service management software&nbsp;SysAid&nbsp;to gain access to corporate servers for data theft and to deploy Clop ransomware.</P><P>SysAid is a comprehensive IT Service Management (ITSM) solution that provides a suite of tools for managing various IT services within an organization.</P><P>&nbsp;</P><P>&nbsp;</P><P><A href="https://www.bleepingcomputer.com/news/security/microsoft-sysaid-zero-day-flaw-exploited-in-clop-ransomware-attacks/?traffic_source=Connatix" target="_blank" rel="noopener">Microsoft: SysAid zero-day flaw exploited in Clop ransomware attacks (bleepingcomputer.com)</A></P><P>&nbsp;</P><P>&nbsp;</P> Thu, 09 Nov 2023 18:29:00 GMT https://community.isc2.org/t5/Threats/Microsoft-SysAid-zero-day-flaw-exploited-in-Clop-ransomware/m-p/64398#M959 Kyaw_Myo_Oo 2023-11-09T18:29:00Z https://community.isc2.org/t5/Threats/Microsoft-SysAid-zero-day-flaw-exploited-in-Clop-ransomware/m-p/64405#M961 And now they’ve added the Clop deployment service… maybe they should call it Clip?<BR /><BR />Always keep Tomcat and other components up to date, just in case.<BR /><BR />When you build your product always include abuse case testing based on what attackers want.<BR /><BR /><A href="https://profero.io/posts/sysaidonpremvulnerability/" target="_blank">https://profero.io/posts/sysaidonpremvulnerability/</A> Thu, 09 Nov 2023 23:51:22 GMT https://community.isc2.org/t5/Threats/Microsoft-SysAid-zero-day-flaw-exploited-in-Clop-ransomware/m-p/64405#M961 Early_Adopter 2023-11-09T23:51:22Z https://community.isc2.org/t5/Threats/Microsoft-SysAid-zero-day-flaw-exploited-in-Clop-ransomware/m-p/64621#M971 <P>Thank you dear for your information <a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/797288093">@Early_Adopter</a>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Thu, 16 Nov 2023 17:27:18 GMT https://community.isc2.org/t5/Threats/Microsoft-SysAid-zero-day-flaw-exploited-in-Clop-ransomware/m-p/64621#M971 Kyaw_Myo_Oo 2023-11-16T17:27:18Z