Usage subject to Terms and Conditions

Security Researchers Reveal Activity Targeting ManageEngine ADSelfService Plus

Security Researchers Reveal Activity Targeting ManageEngine ADSelfService Plus

Read the original article at https://us-cert.cisa.gov/ncas/current-activity/2021/11/09/security-researchers-reveal-activity-targeting-manageengine

Original release date: November 9, 2021

On September 16, CISA released a joint alert on exploitation of a vulnerability (CVE-2021-40539) in ManageEngine ADSelfService Plus. On November 8, security researchers from Palo Alto Networks and Microsoft Threat Intelligence Center (MSTIC) released separate reports on targeted attacks against ManageEngine ADSelfService Plus.  

CISA encourages organizations to review the indicators of compromise and other technical details in the following reports to uncover any malicious activity within their networks.

This product is provided subject to this Notification and this Privacy & Use policy.

Read the original article at https://us-cert.cisa.gov/ncas/current-activity/2021/11/09/security-researchers-reveal-activity-targeting-manageengine