186 views 43 secs 0 comments

Microsoft: SysAid zero-day flaw exploited in Clop ransomware attacks

In Data Breach News, News, Vulnerabilities
November 09, 2023
Microsoft: SysAid zero-day flaw exploited in Clop ransomware attacks
Image by Kerfin7 on Freepik

Bleeping Computer reports:

Threat actors are exploiting a zero-day vulnerability in the service management software SysAid to gain access to corporate servers for data theft and to deploy Clop ransomware.

SysAid is a comprehensive IT Service Management (ITSM) solution that provides a suite of tools for managing various IT services within an organization.

The Clop ransomware is notorious for exploiting zero-day vulnerabilities in widely used software. Recent examples include MOVEit TransferGoAnywhere MFT, and Accellion FTA.

Read more at Bleeping Computer.