Lucene search
K

14 matches found

HackRead
HackRead
added 2025/09/15 12:23 p.m.3 views

Hackers Hide RMM Installs as Fake Chrome Updates and Teams Invites

New research from Red Canary and Zscaler shows phishing lures now drop RMM tools like ITarian and Atera,…...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 3:2 a.m.7 views

CVE-2024-6748

Zohocorp ManageEngine OpManager, OpManager Plus, OpManager MSP and RMM versions 128317 and below are vulnerable to authenticated SQL injection in the URL monitoring...

8.3CVSS7.9AI score0.23784EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/08/28 12:0 a.m.69 views

ManageEngine OpManager RCE (CVE-2024-5466)

Zohocorp ManageEngine OpManager and Remote Monitoring and Management versions 128329 and below are vulnerable to the authenticated remote code execution in the deploy agent option. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported versio...

8.8CVSS6.3AI score0.06911EPSS
Exploits0References2
OSV
OSV
added 2024/08/23 2:15 p.m.5 views

CVE-2024-5466

Zohocorp ManageEngine OpManager and Remote Monitoring and Management versions 128329 and below are vulnerable to the authenticated remote code execution in the deploy agent option...

8.8CVSS6.3AI score0.06911EPSS
Exploits0References1
NVD
NVD
added 2024/08/23 2:15 p.m.21 views

CVE-2024-5466

Zohocorp ManageEngine OpManager and Remote Monitoring and Management versions 128329 and below are vulnerable to the authenticated remote code execution in the deploy agent option...

8.8CVSS0.06911EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/23 1:23 p.m.23 views

CVE-2024-5466 Remote Code Execution

Zohocorp ManageEngine OpManager and Remote Monitoring and Management versions 128329 and below are vulnerable to the authenticated remote code execution in the deploy agent option...

8.8CVSS7.7AI score0.06911EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/07/16 9:13 a.m.27 views

Iranian Hackers Deploy New BugSleep Backdoor in Middle East Cyber Attacks

The Iranian nation-state actor known as MuddyWater has been observed using a never-before-seen backdoor as part of a recent attack campaign, shifting away from its well-known tactic of deploying legitimate remote monitoring and management RMM software for maintaining persistent access. That's...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2024/05/14 10:44 a.m.10 views

Ongoing Campaign Bombards Enterprises with Spam Emails and Phone Calls

Cybersecurity researchers have uncovered an ongoing social engineering campaign that bombards enterprises with spam emails with the goal of obtaining initial access to their environments for follow-on exploitation. "The incident involves a threat actor overwhelming a user's email with junk and...

7.7AI score
Exploits0
The Hacker News
The Hacker News
added 2024/03/25 7:37 a.m.18 views

Iran-Linked MuddyWater Deploys Atera for Surveillance in Phishing Attacks

The Iran-affiliated threat actor tracked as MuddyWater aka Mango Sandstorm or TA450 has been linked to a new phishing campaign in March 2024 that aims to deliver a legitimate Remote Monitoring and Management RMM solution called Atera. The activity, which took place from March 7 through the week o...

7.4AI score
Exploits0
CISA
CISA
added 2023/01/25 12:0 a.m.9 views

CISA, NSA, and MS-ISAC Release Advisory on the Malicious Use of RMM Software

Today, the Cybersecurity and Infrastructure Security Agency CISA, the National Security Agency NSA, and the Multi-State Information Sharing and Analysis Center MS-ISAC released joint Cybersecurity Advisory CSA Protecting Against Malicious Use of Remote Monitoring and Management Software. The...

1.1AI score
Exploits0References1
CISA
CISA
added 2021/07/04 12:0 a.m.60 views

CISA-FBI Guidance for MSPs and their Customers Affected by the Kaseya VSA Supply-Chain Ransomware Attack

CISA and the Federal Bureau of Investigation FBI continue to respond to the recent supply-chain ransomware attack leveraging a vulnerability in Kaseya VSA software against multiple managed service providers MSPs and their customers. CISA and FBI strongly urge affected MSPs and their customers to...

7.2AI score
Exploits0References6
Malwarebytes
Malwarebytes
added 2021/05/27 6:9 p.m.170 views

RMM software: What is it and do you need it?

As cybersecurity products evolve to better protect against new forms of malware, trickier evasion techniques, and more organized cybercrime campaigns, the practice of cybersecurity evolves, too, providing simple, streamlined methods to manage hundreds of endpoints through one tool: RMM software...

Exploits0
Malwarebytes
Malwarebytes
added 2021/01/15 6:54 p.m.48 views

MSPs, have you picked the right PSA for you yet?

Not long ago, we helped MSPs pick the right remote monitoring and management RMM platform for them, and make it an essential part of their service toolkit. As you may recall, an RMM is a tool that helps MSPs do the work. And what better way to track the work—and other elements associated with...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 2013/07/18 12:0 a.m.48 views

Dell PacketTrap MSP RMM 6.6.x - Multiple Cross-Site Scripting Vulnerabilities

Title: ====== Dell PacketTrap MSP RMM 6.6.x - Multiple Persistent Web Vulnerabilities Date: ===== 2013-07-17 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=791 VL-ID: ===== 791 Common Vulnerability Scoring System: ==================================== 3.5 Introduction:...

7AI score
Exploits0
Rows per page
Query Builder