China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware

A China-based threat actor known for deploying Medusa ransomware has been linked to the weaponization of a combination of zero-day and N-day vulnerabilities to orchestrate "high-velocity" attacks and break into susceptible internet-facing systems. "The threat actor's high operational tempo and...

CVE-2024-5466

Zohocorp ManageEngine OpManager and Remote Monitoring and Management versions 128329 and below are vulnerable to the authenticated remote code execution in the deploy agent option...

ZOHO ManageEngine OpManager RMM 安全漏洞

ZOHO ManageEngine OpManager RMM is a remote monitoring and management software from ZOHO, Inc. A security vulnerability exists in ZOHO ManageEngine OpManager RMM version 128329 and prior versions, which stems from a remote code execution contained in the deployment agent option...

Remote Monitoring & Management software used in phishing attacks

Remote Monitoring & Management RMM software, including popular tools like AnyDesk, Atera, and Splashtop, are invaluable for IT administrators today, streamlining tasks and ensuring network integrity from afar. However, these same tools have caught the eye of cybercriminals, who exploit them to...

CISA Releases JCDC Remote Monitoring and Management (RMM) Cyber Defense Plan

Today, CISA released the Remote Monitoring and Management RMM Cyber Defense Plan, the first proactive Plan developed by industry and government partners through the Joint Cyber Defense Collaborative JCDC. This plan addresses systemic risks facing the exploitation of RMM software. Cyber threat...

Kaseya VSA Cross-Site Scripting Vulnerability

Kaseya VSA is the RMM Remote Monitoring and Management software commonly used by Kaseya's Managed Service Providers MSPs in the United States to manage their customers' networks. A cross-site scripting vulnerability exists in Kaseya VSA, which can be exploited by an attacker to execute client-sid...

Kaseya VSA SQL Injection Vulnerability

Kaseya VSA is the RMM Remote Monitoring and Management software commonly used by Kaseya's Managed Service Providers MSPs in the United States to manage their customers' networks. A SQL injection vulnerability exists in Kaseya VSA versions prior to 9.5.5, which can be exploited by an attacker to...

Kaseya VSA Code Injection Vulnerability

Kaseya VSA is the RMM Remote Monitoring and Management software commonly used by Kaseya's Managed Service Providers MSPs in the United States to manage their customers' networks. Kaseya VSA is vulnerable to a code injection vulnerability, no details of the vulnerability are provided at this time...

Kaseya VSA Security Bypass Vulnerability

Kaseya VSA is the RMM Remote Monitoring and Management software commonly used by Kaseya's Managed Service Providers MSPs in the United States to manage their customers' networks. A security vulnerability exists in Kaseya VSA that stems from a 2FA bypass. No details of the vulnerability are provid...

Kaseya VSA SQL注入漏洞

Kaseya VSA is the RMM Remote Monitoring and Management software commonly used by Kaseya's Managed Service Providers MSPs in the United States to manage their customers' networks. A SQL injection vulnerability exists in Kaseya VSA versions prior to 9.5.5, which can be exploited by an attacker to...

NinjaRMM 访问控制错误漏洞

NinjaRMM is a remote monitoring and management software from NinjaRMM USA. Improve business efficiency by combining monitoring, alerting, patching, antivirus, backup and IT automation all in a single management platform. An Access Control Error vulnerability exists in NinjaRMM, which arises from...

Advantech WISE-PaaS/RMM Unauthorized Access Vulnerability

Advantech WISE-PaaS/RMM is a remote monitoring and management platform for IoT devices. An unauthorized access vulnerability exists in Advantech WISE-PaaS/RMM, which can be exploited by an attacker to submit a special request for unauthorized access to a device...

Advantech WISE-PaaS/RMM XML External Entity Injection Vulnerability

Advantech WISE-PaaS/RMM is an IoT device remote monitoring and management platform. An XML External Entity Injection XXE vulnerability exists in Advantech WISE-PaaS/RMM 3.3.29 and earlier versions. An attacker can exploit this vulnerability to obtain sensitive data...

Advantech WISE-PaaS/RMM Path Traversal Vulnerability

Advantech WISE-PaaS/RMM is an IoT device remote monitoring and management platform. A path traversal vulnerability exists in Advantech WISE-PaaS/RMM 3.3.29 and earlier versions. The vulnerability stems from failure to properly validate a user-supplied path before using it for file operations. An...