SysAid warns customers to patch after ransomware gang caught exploiting new zero-day flaw

Software maker SysAid is warning customers that hackers linked to a notorious ransomware gang are exploiting a newly discovered vulnerability in its widely used IT service automation software.

SysAid chief technology officer Sasha Shapirov confirmed in a blog post Wednesday that attackers are exploiting a zero-day flaw affecting its on-premises software. A vulnerability is considered a zero-day when the vendor — in this case SysAid — has zero time to fix the bug before it is exploited by attackers.

Read more…
Source: Yahoo News