Lazarus APT exploits Zoho ManageEngine flaw to target an Internet backbone infrastructure provider | allinfosecnews.com

Aug. 24, 2023, 5:50 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

The North Korea-linked Lazarus group exploits a critical flaw in Zoho ManageEngine ServiceDesk Plus to deliver the QuiteRAT malware. The North Korea-linked APT group Lazarus has been exploiting a critical vulnerability, tracked as CVE-2022-47966, in Zoho’s ManageEngine ServiceDesk in attacks aimed at the Internet backbone infrastructure provider and healthcare organizations. The state-sponsored hackers targeted entities […]

The post Lazarus APT exploits Zoho ManageEngine flaw to target an Internet backbone infrastructure provider appeared first on Security Affairs.

apt attacks breaking news critical critical flaw critical vulnerability cve cve-2022-47966 cyber warfare exploiting exploits flaw hacking information security news infrastructure internet it information security korea lazarus lazarus apt lazarus group malware manageengine north north korea pierluigi paganini quiterat target vulnerability zoho zoho manageengine zoho manageengine servicedesk plus

More from securityaffairs.co / Security Affairs

Hackers may have accessed thousands of accounts on the California state welfare platform 16 hours ago | securityaffairs.co

accounts benefitscal breach breached +21

Brokewell Android malware supports an extensive set of Device Takeover capabilities 23 hours ago | securityaffairs.co

android android malware breaking news brokewell android malware +18

Experts warn of an ongoing malware campaign targeting WP-Automatic plugin 1 day, 17 hours ago | securityaffairs.co

automatic backdoors breaking news campaign +33

Cryptocurrencies and cybercrime: A critical intermingling 1 day, 19 hours ago | securityaffairs.co

breaking news critical cryptocurrencies cyber crime +14

Kaiser Permanente data breach may have impacted 13.4 million patients 1 day, 19 hours ago | securityaffairs.co

american breach breaking news care +27

Over 1,400 CrushFTP internet-facing servers vulnerable to CVE-2024-4040 bug 1 day, 21 hours ago | securityaffairs.co

attacks breaking news bug critical +25

Sweden’s liquor supply severely impacted by ransomware attack on logistics company 2 days ago | securityaffairs.co

alcohol attack breaking news critical +17

CISA adds Cisco ASA and FTD and CrushFTP VFS flaws to its Known Exploited Vulnerabilities … 2 days, 10 hours ago | securityaffairs.co

actor agency asa breaking news +28

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog 2 days, 17 hours ago | securityaffairs.co

agency breaking news catalog cisa +29

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Associate Compliance Advisor

@ SAP | Budapest, HU, 1031

View on infosec-jobs.com

DevSecOps Engineer

@ Qube Research & Technologies | London

View on infosec-jobs.com

Software Engineer, Security

@ Render | San Francisco, CA or Remote (USA & Canada)

View on infosec-jobs.com

Associate Consultant

@ Control Risks | Frankfurt, Hessen, Germany

View on infosec-jobs.com

Senior Security Engineer

@ Activision Blizzard | Work from Home - CA

View on infosec-jobs.com