cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Kyaw_Myo_Oo
Contributor III

Microsoft: SysAid zero-day flaw exploited in Clop ransomware attacks

Dear All,

 

Threat actors are exploiting a zero-day vulnerability in the service management software SysAid to gain access to corporate servers for data theft and to deploy Clop ransomware.

SysAid is a comprehensive IT Service Management (ITSM) solution that provides a suite of tools for managing various IT services within an organization.

 

 

Microsoft: SysAid zero-day flaw exploited in Clop ransomware attacks (bleepingcomputer.com)

 

 

Kyaw Myo Oo
Manager , CB BANK PCL
CCIE #58769 | PCNSE | SAA-C03 | CCSM | CISSP | PMP
2 Replies
Early_Adopter
Community Champion

And now they’ve added the Clop deployment service… maybe they should call it Clip?

Always keep Tomcat and other components up to date, just in case.

When you build your product always include abuse case testing based on what attackers want.

https://profero.io/posts/sysaidonpremvulnerability/
Kyaw_Myo_Oo
Contributor III

Thank you dear for your information @Early_Adopter 

 

 

Kyaw Myo Oo
Manager , CB BANK PCL
CCIE #58769 | PCNSE | SAA-C03 | CCSM | CISSP | PMP