Threat Post

Critical ManageEngine Desktop Server Bug Opens Orgs to Malware

Zoho’s comprehensive endpoint-management platform suffers from an authentication-bypass bug (CVE-2021-44757) that could lead to remote code execution. A critical security vulnerability in the Zoho ...
Threat Post

FBI: Another Zoho ManageEngine Zero-Day Under Active Attack

APT attackers are using a security vulnerability in ManageEngine Desktop Central to take over servers, deliver malware and establish network persistence. Another Zoho ManageEngine zero-day ...
Bleeping Computer

Zoho plugs another critical security hole in Desktop Central

Zoho has addressed a new critical severity vulnerability that affects the company's Desktop Central and Desktop Central MSP unified endpoint management (UEM) solutions. ManageEngine Desktop Central is ...
ZDNet

FBI: Hackers are actively exploiting this flaw on ManageEngine Desktop Central servers

The FBI's cyber division has issued an alert warning enterprises using Zoho-owned ManageEngine's Desktop Central that advanced attackers have been exploiting a flaw to install malware since late ...
Bleeping Computer

FBI: State hackers exploiting new Zoho zero-day since October

The Federal Bureau of Investigation (FBI) says a zero-day vulnerability in Zoho's ManageEngine Desktop Central has been under active exploitation by state-backed hacking groups (also known as APTs or ...