all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

'Spray and pray' attacks likely with Zoho ManageEngine RCE bug

Add to bookmarks
Jan. 18, 2023, 1:24 a.m. | SC Staff

SC Magazine feed for Strategy www.scmagazine.com

Organizations using internet-exposed Zoho ManageEngine products with SAML single-sign-on enabled or previously enabled could be subjected to "spray and pray" attacks through CVE-2022-47966 exploitation, SecurityWeek reports.

attacks breach bug cve cve-2022-47966 exploitation exposed internet manageengine organizations products rce reports saml sign single spray vulnerability management zoho zoho manageengine

Visit resource

More from www.scmagazine.com / SC Magazine feed for Strategy

Critical GitLab account takeover flaw added to CISA’s KEV Catalog an hour ago | www.scmagazine.com
account account takeover catalog cisa +16
Understanding Scattered Spider, and how they perform cloud-centric identity attacks 3 hours ago | www.scmagazine.com
aiml attacks cloud enterprise +8
Continuous threat exposure management (CTEM): What it is and how to achieve it 4 hours ago | www.scmagazine.com
business business goals compliance compliance frameworks +12
Dealing with the Double-Edged Swords of MFA and Zero Trust 4 hours ago | www.scmagazine.com
control identity mfa security +3
Attackers steal API keys, OAuth tokens, in Dropbox Sign breach 5 hours ago | www.scmagazine.com
api api keys api security application security +15
Data breach hits Panda Restaurants 9 hours ago | www.scmagazine.com
american bleepingcomputer breach compromised +18
Dropbox Sign breach impacts customer data 9 hours ago | www.scmagazine.com
application security breach cloud security compromised +21
Enterprise SOHOs subjected to Cuttlefish malware attacks 9 hours ago | www.scmagazine.com
april attacks authentication cloud +19
CISA: Immediate GitLab account takeover flaw remediation crucial amid attacks 9 hours ago | www.scmagazine.com
account account takeover agency attacks +30

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Information Security Engineer, Sr. (Container Hardening)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

BaaN IV Techno-functional consultant-On-Balfour

@ Marlabs | Piscataway, US
View on infosec-jobs.com

Senior Security Analyst

@ BETSOL | Bengaluru, India
View on infosec-jobs.com

Security Operations Centre Operator

@ NEXTDC | West Footscray, Australia
View on infosec-jobs.com

Senior Network and Security Research Officer

@ University of Toronto | Toronto, ON, CA
View on infosec-jobs.com
View more jobs