News

•

NPCC

NPCC Security Bulletin: Zoho ManageEngine ServiceDesk Plus Vulnerability

Published

December 15, 2021

TLP: WHITE

December 15, 2021

Zoho ManageEngine ServiceDesk Plus Vulnerability

On Thursday, December 2, 2021, the Cybersecurity & Infrastructure Security Agency (CISA) and Federal Bureau of Investigations (FBI) reported a new campaign targeting ManageEngine ServiceDesk Plus servers (on-premises) that are vulnerable to CVE-2021-44077.

CVE-2021-44077 is an unauthenticated remote code execution vulnerability in ManageEngine ServiceDesk Plus affecting all versions of ServiceDesk Plus up to, and including, version 11305. Following initial exploitation of CVE-2021-44077 on a targeted system, the threat actors have been observed uploading executable files and placing web shells that enable post-exploitation activities such as compromising administrator credentials, conducting lateral movement, and exfiltrating registry hives and Active Directory files.

Recommendations:

Run the ManageEngine Exploit Detection Tool on ServiceDesk Plus Servers to discover any compromises in your environment
Upgrade to the latest version using the appropriate migration path

Additional:

The Electricity Information Sharing and Analysis Center (E‐ISAC) also has more information on this topic.

View attachment View attachment

Previous Article

UFLS Regional Standard Drafting Team Meeting on March 21 and March 22 at NPCC offices.

November 30, 2010 RSC Meeting Minutes posted

Summer 2011 Media Advisory

NPCC Summer 2011 Reliability Assessment Overview

Summer 2011 Media Release

RSC Executive Tracking Summary (5-27-11) Posted

RSC Executive Tracking Summary (6-10-11) Posted

RSC Executive Tracking Summary (6-17-11) posted

RSC Executive Committee conference call to discuss CEAP July 8, 2011 at 09:00EDST

2011 Announcement for NPCC Annual Meeting of Members and the General Meeting

Meeting Materials and Preliminary Agenda posted for the 8-3/4-11 RSC Meeting

NPCC Draft Glossary of Terms Posted for Comment until Sept. 12, 2011

NPCC Draft Directory Development and Revision Manual Posted for Comment until Sept. 12, 2011

TFCO Conference Call September 2, 2011 0900

2012 Compliance Audit Schedule has been posted for review

Comments submitted for NERC CAN Process, CAN-0016 CIP-001 R1--9/6/11

Directory #9 and Directory#10 posted to the Open Process for Phase 2 reformatting revisions through October 25

TFSP November 15-17, 2011 Meeting Annoucement

2012 revised NPCC Compliance Audit Schedule has been posted for review and comment

CEAP Phase 2 Questions UFLS

PRC-006-NPCC-1 Automatic Underfrequency Load Shedding Pre-Ballot Review and Cost Effectiveness

UFLS Regional Standard Posted (3rd posting) to the Open Process through June 20, 2011

Comment Forms Submitted--NERC Project 2010-17 Definition of BES, Technical Principles for Demonstrating BES Exceptions

Solicitation for NPCC BAL-002-NPCC-01 Regional Reserve Sharing Groups

TFSP January 24-26, 2012 Meeting Announcement

PRC -006-NPCC-1 Automatic Underfrequency Load Shedding 30 Day Pre Ballot Review

SS-38 December 5-6, 2011 Meeting Announcement

2012 Compliance Reporting Schedule Posted

NPCC 2011 General Meeting

NPCC Cost Effectiveness Analysis procedure "CEAP" For NPCC Regional Reliability Standards Approved by the RSC, posted.

NPCC Regional Standard PRC-006-NPCC-1 UFLS Posted for 10 Day Ballot

PRC-006-NPCC-1 Automatic Underfrequency Load Shedding Ballot Results

Directories #9 and #10 Verification of Real and Reactive Power Posted for Full Member Ballot until December 29th, 2011

NPCC BOD Approves Regional Standard PRC-006-NPCC-1 Automatic UFLS

NPCC Full Member Committee Approves Phase 2 Versions of Directory #9 and Directory #10

NERC/ERO Board of Trustees approves NPCC PRC -006-1 Automatic UFLS.

Directory #6 Reserve Sharing Groups Approved by the NPCC Full Member Committee

2012 Summer Media Advisory

NPCC Summer 2012 Reliability Assessment Overview

Summer Media Release 2012

Compliance Guidance Statement CGS-004 is now posted

RSAR for PRC-002-NPCC-01 Accepted by the RSC

May CO-10 Meeting

Spring 2013 NPCC Compliance and Standards Workshop

Corrected Summer 2013 Media Release

NPCC Summer 2013 Reliability Assessment Overview

Compliance Guidance Statement CGS-005 is now posted

Summary of Improvements to Grid Reliability Resulting from 2003 Blackout

Draft 2014 Audit Schedule Posted

RFP for Independent Contract Auditors

2014 Audit Schedule Posted

TFSP Response to a Request for Clarification for PRC-002-NPCC-01 R16 posted

Fall 2013 NPCC Compliance and Standards Workshop

NPCC 2013 General Meeting

NPCC 2013 General Meeting Presentations Posted

Final NPCC 2014 Audit Schedule

Summer 2014 Media Advisory

NPCC Summer 2014 Reliability Assessment Overview

Summer 2014 Media Release

Updated 2014 Compliance Schedule Posted

Regional Standard Processes Manual (RSPM) for Review and Approval

2014 Announcement June 25 Webinar: Effect of Revised BES on Compliance Obligations Within NPCC

Preliminary 2015 Audit Schedule

Fall 2014 NPCC Compliance and Standards Workshop

Regional Consistency Reporting Tool

NPCC Directory #3 Maintenance Criteria BPS Protection retired effective April 1st, 2015

NPCC Winter 2014-2015 Reliability Assessment Media Release

IPSAC Meeting Notice 2014-12-12

FERC Approves NPCC Regional Standard Processes Manual

RSC 2015-16 Work Plan - Approved by BOD

Registration Now Open for CIPV5 Seminar

PRC-002-NPCC-02 RSAR Acceptance Announcement

Nomination Form For Drafting Team

Solicitation Letter for PRC-002-NPCC-02

RSC Co-Vice Chair Approved Announcement

Directory #3 Maintenance Criteria for BPS Protection Retired Effective April 1st, 2015

Risk Based Registration Update

Summer 2015 Media Advisory

Summer 2015 Media Release

NPCC Summer 2015 Reliability Assessment Overview

NPCC Guided Self-Certification Program Documents Now Available

PRC-006-NPCC-2 RSAR Acceptance Announcement

RFP for Independent Contract Compliance Auditor 2016

PRC-002-NPCC-02 Drafting Team WebEx

Regional RSAW for PRC-006-01 Now Available

Solicitation Letter and Nomination Form for PRC-006-NPCC-02 Drafting Team Members

Nomination Form For PRC-006-NPCC-02 DT

Solicitation Letter For PRC-006-NPCC-02

SAR--PRC-006-3 Automatic Underfrequency Load Shedding

Solicitation for Drafting Team Members RSAR PRC-006-3--Automatic Underfrequency Load shedding - Variance for the Quebec Interconnection

Fall 2015 NPCC Compliance and Standards Workshop

Retirement of PRC-002-NPCC-01 Disturbance Monitoring Authorized by NPCC's Regional Standards Committee

Retirement of PRC-002-NPCC-01 Disturbance Monitoring Materials Posted For Pre-Ballot Review

2016 Draft Compliance Monitoring List Updated

NPCC 2015 General Meeting

2016 Compliance Monitoring List Updated

BES Exception Request Time Period Extension

Announcement: Webinar on Top 3 Violations on April 28, 2016

Summer 2016 Media Advisory

Summer 2016 Media Release

Additional News

NPCC Posts Common Risk and Control Questions

NPCC Posts Common Risk and Control Questions

January 8, 2025

2025 Self-Certification Schedule Released

2025 Self-Certification Schedule Released

December 6, 2024

NPCC is dedicated to the continued reliability of the bulk power system in Northeastern North America