This article has been indexed from Heimdal Security Blog
You may recall that we reported a while ago that state-backed advanced persistent threat (APT) organizations had been actively exploiting a significant hole in a Zoho single sign-on and password management solution since early August 2021. What Happened? As thoroughly reported by BleepingComputer, there is no publicly available proof-of-concept exploit for CVE-2021-44077, implying that the […]
The post The In-house Zoho ServiceDesk Exploit Used to Drop Webshells appeared first on Heimdal Security Blog.
Read the original article: The In-house Zoho ServiceDesk Exploit Used to Drop Webshells