Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Kyaw_Myo_Oo
Contributor II
‎11-09-2023 01:28 PM
‎11-09-2023 01:28 PM

Microsoft: SysAid zero-day flaw exploited in Clop ransomware attacks

Dear All,

 

Threat actors are exploiting a zero-day vulnerability in the service management software SysAid to gain access to corporate servers for data theft and to deploy Clop ransomware.

SysAid is a comprehensive IT Service Management (ITSM) solution that provides a suite of tools for managing various IT services within an organization.

 

 

Microsoft: SysAid zero-day flaw exploited in Clop ransomware attacks (bleepingcomputer.com)

 

 

Kyaw Myo Oo
Manager , CB BANK PCL
CCIE #58769 | PCNSE | CCSE | CISSP | PMP
Reply
2 Replies
Early_Adopter
Community Champion
‎11-09-2023 06:51 PM
‎11-09-2023 06:51 PM

And now they’ve added the Clop deployment service… maybe they should call it Clip?

Always keep Tomcat and other components up to date, just in case.

When you build your product always include abuse case testing based on what attackers want.

https://profero.io/posts/sysaidonpremvulnerability/
Reply
Kyaw_Myo_Oo
Contributor II
‎11-16-2023 12:26 PM
‎11-16-2023 12:26 PM

Thank you dear for your information @Early_Adopter 

 

 

Kyaw Myo Oo
Manager , CB BANK PCL
CCIE #58769 | PCNSE | CCSE | CISSP | PMP
Reply