A newly identified bug in a Zoho single sign-on and password management tool has been under active attack since early August. At issue is a critical authentication bypass vulnerability in Zoho ManageEngine ADSelfService Plus platform that can lead to remote code execution. State-backed advanced persistent threat (APT) actors are likely among those whove been actively exploiting a bug in the tool since early last month. Zoho issued a patch last Tuesday for the flaw, which is tracked as CVE-2021-40539 with a 9.8 severity rating.”]
Source: https://threatpost.com/cisa-fbi-state-backed-apts-exploit-critical-zoho-bug/174768/