#ITServiceManagement

Microsoft: SysAid zero-day flaw exploited in Clop ransomware attacks

by

November 9, 2023 at 09:33AM Threat actors are exploiting a zero-day vulnerability in SysAid software to gain unauthorized access to corporate servers for data theft and ransomware deployment. The vulnerability, currently known as CVE-2023-47246, was used by a threat actor group called Lace Tempest to deploy Clop ransomware. SysAid has developed a patch and urges … Read more

ServiceNow Data Exposure: A Wake-Up Call for Companies

by

October 30, 2023 at 08:12AM ServiceNow recently announced that misconfigurations within its platform could lead to unintended access to sensitive data. This is a major concern for organizations that use ServiceNow, as it could result in data leakage. ServiceNow has taken steps to address the issue. The article provides detailed analysis, explains the consequences, and … Read more