all InfoSec news
APT Actors Exploited Known Zoho, Fortinet Flaws to Hit Aeronautical Org
Malware Analysis, News and Indicators - Latest topics malware.news
Earlier this year, APT actors exploited known Zoho and Fortinet vulnerabilities to compromise an organization in the aeronautical sector, before downloading malware, stealing credentials and moving laterally on the network.
Threat actors targeted a public-facing Zoho ManageEngine ServiceDesk Plus application that was vulnerable to a remote code execution flaw (CVE-2022-47966), and a firewall device on the organization vulnerable to a remotely exploitable heap overflow bug (CVE-2022-42475). CISA, which outlined the attack in a joint advisory released with the FBI and …
application apt code code execution compromise credentials exploited facing flaw flaws fortinet malware manageengine moving network org organization public remote code remote code execution sector stealing threat threat actors vulnerabilities vulnerable zoho zoho manageengine zoho manageengine servicedesk zoho manageengine servicedesk plus