Skip to content

CyberIQs – Home
Blog
About Us
Contact Us

CISA, FBI, CNMF detail multiple nation-state hackers striking aeronautical sector using Zoho ManageEngine vulnerabilities

CyberIQs
September 8, 2023

Go to Home » cyber

U.S. agencies released on Thursday a joint advisory to highlight the presence of indicators of compromise (IOCs) at an aeronautical sector organization as early as January 2023. The document confirms nation-state advanced persistent threat (APT) actors exploited CVE-2022-47966 to gain unauthorized access to a public-facing application (Zoho ManageEngine ServiceDesk Plus), establish persistence, and move laterally through the network. The vulnerability

Read more

Tags: Malware, Phishing & Ransomware, APT, RCE, Critical infrastructure, vulnerabilities, advisory, hackers, Attacks and Vulnerabilities, highlight, zoho, firewall, Nation-state, Advanced, network, ManageEngine

Related Posts

Rockwell reveals ControlLogix vulnerabilities affect communication modules deployed across critical infrastructurea
Hackers exploiting RCE vulnerability in NetScaler, Gateway devices to implant webshells, CISA warnsa
Global cybersecurity authorities release details on top routinely exploited vulnerabilities in 2022a
CISA warns of hackers exploiting Ivanti EPMM vulnerabilities, after several Norwegian entities targeteda
US, Canadian agencies warn organizations of newly identified Truebot malware variantsa

AI News

Hollywood writers’ strike ends with first-ever protections against AI

September 27, 2023 1:41 am

Meet OpenCopilot: Create Custom AI Copilots for Your Own SaaS Product (like Shopify Sidekick)

September 27, 2023 12:01 am

Atlassian CTO: We were late moving to the cloud, on the ball with AI

September 26, 2023 11:31 pm

Cyber News

Network Flight Simulator: Open-source adversary simulation tool

September 27, 2023 3:30 am

Sony Investigating Potential Data Breach

September 27, 2023 3:06 am

Cloud service inefficiencies drain IT budgets

September 27, 2023 3:00 am

Blog

Hitrust Certification

May 2, 2023 8:14 am

What is the best cloud security certification, CCSP, CCSK or CCAK?

April 21, 2023 9:23 pm

The Top 3 Countries With The Best Cyber Warfare Capabilities

April 2, 2023 2:47 pm

Find us on social media

Facebook Twitter Linkedin Reddit

© 2023 CyberIQs | All rights reserved.

News
About Us
Contact Us
Cookie Policy
Disclaimer
Privacy Statement

Follow Us

Facebook Twitter Linkedin

Manage Cookie Consent

We use cookies to optimize our website and our service.

Functional Functional Always active

The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.

Preferences Preferences

The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.

Statistics Statistics

The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.

Marketing Marketing

The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.

Manage options Manage services Manage vendors Read more about these purposes

View preferences

{title} {title} {title}