Zero-Day Alert: Lace Tempest Exploits SysAid IT Support Software Vulnerability

November 9, 2023 at 12:16PM Lace Tempest, the threat actor behind the Cl0p ransomware, has exploited a zero-day flaw in SysAid IT support software. The flaw, tracked as CVE-2023-47246, allows code execution and has been patched by SysAid. Lace Tempest uses the vulnerability to deliver the Gracewire malware, engage in data theft, and deploy ransomware. … Read more