Summary: SysAid IT service management software is vulnerable to a zero-day exploit, CVE-2023-47246, which has been utilized by the Cl0p ransomware group. Microsoft's threat intelligence team alerted SysAid to the vulnerability and subsequent attacks. SysAid has released a patch, version 23.3.36, to address the flaw and has provided recommendations for potentially impacted customers. The Cl0p ransomware group has been linked to other large-scale attacks involving software vulnerabilities.

Hashtags: #SysAid #ZeroDay #Vulnerability #Ransomware #CVE-2023-47246

https://www.securityweek.com/sysaid-zero-day-vulnerability-exploited-by-ransomware-group/