News Snapshot:
Microsoft has sent an alert about a sophisticated Chinese hacker group targeting an ambiguous bug in the Zoho software to install Webshell. Microsoft Threat Intelligence Center (MSTIC) has detected an exploit targeting a running system [Zoho ManageEngine ADSelfService Plus](//www.manageengine.com/products/self-service-password/) , Self-service password management and single sign-on solution. Bugs in remote code execution are tracked as follows: [CVE-2021-40539](//cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-40539) .. Zoho is best known as a software vendor as a popular service, but ManageEngine is the company’s enterprise IT management software division. This is a targeted malware campaign, so most Windows users don’t have to worry about it, but Microsoft [Flagged the...
