Download App

Startup Showcase

Join our whatsapp channel for quick updates

Switch theme

Blog . Feedback . Privacy

© 2024 Medial Tech Pvt. Ltd.

News on Medial

Actively exploited 0-days in Ivanti VPN are letting hackers backdoor networks

Arstechnica

Arstechnica · 10m

Actively exploited 0-days in Ivanti VPN are letting hackers backdoor networks

Multiple zero-day vulnerabilities have been identified in Ivanti Connect Secure, a widely used virtual private network (VPN) appliance, allowing threat actors to bypass two-factor authentication and execute malicious code within targeted networks. Tracked as CVE-2023-846805 and CVE-2024-21887, these vulnerabilities have been actively exploited by unidentified threat actors. The compromised appliance was used to steal configuration data, modify files, download remote files, and gain unauthorized access to internal systems. Researchers suspect that a Chinese nation-state-level threat actor is behind the attacks. Mitigation measures are advised, as there is potential for widespread exploitation if the vulnerabilities are not addressed promptly.

5

Comments

More Like this

US defense sector under under attack China-backed hackers, with NSA confirming Ivanti exploits are to blame

US defense sector under under attack China-backed hackers, with NSA confirming Ivanti exploits are to blame

As if 2 Ivanti vulnerabilities under exploit weren’t bad enough, now there are 3

As if 2 Ivanti vulnerabilities under exploit weren’t bad enough, now there are 3

Ivanti patches two zero-days under attack, but finds another

Ivanti patches two zero-days under attack, but finds another

Ivanti VPN security flaws are being attacked again by Chinese hackers

Ivanti VPN security flaws are being attacked again by Chinese hackers

NSA says it's tracking Ivanti cyberattacks as hackers hit US defense sector

NSA says it's tracking Ivanti cyberattacks as hackers hit US defense sector

China state hackers infected 20,000 Fortinet VPNs, Dutch spy service says

China state hackers infected 20,000 Fortinet VPNs, Dutch spy service says

“Highly capable” hackers root corporate networks by exploiting firewall 0-day

“Highly capable” hackers root corporate networks by exploiting firewall 0-day

Kremlin-backed hackers exploit critical Windows vulnerability reported by the NSA

Kremlin-backed hackers exploit critical Windows vulnerability reported by the NSA

Barracuda thought it drove 0-day hackers out of customers’ networks. It was wrong.

Barracuda thought it drove 0-day hackers out of customers’ networks. It was wrong.

They’ve begun: Attacks exploiting vulnerability with maximum 10 severity rating

They’ve begun: Attacks exploiting vulnerability with maximum 10 severity rating

Top Users

Trending Posts on Medial

The winner of our last giveaway where we asked Medial members "Who’s the most knowledgeable shark in ....

so, how many of you sent an email to d@zomato.com today :P ....

Tanmay bhat said "Only a foolish would not give luck any credit" This is so apt. Like I can't imag ....

Share your answer for a chance to win the book "Surrounded by Idiots" by Thomas Erikson. Go! Deadl ....

Basics on Medial🟣 Difference between b2c and d2c ....

Top News of the Day: 1. Google has been under fire in multiple antitrust trials for its internal co ....

What is costlier? ....

If ChatGPT got angry because of you, all it needs to do is add a simple instruction in its memory, a ....

Man behind India's third-largest food app after Zomato and Swiggy. 1. Anshoo Sharma had everything ....

Hey devs can I know how much would be the cost / how manu users it supports at x amount of time : f ....

Download the medial app to read full posts, comements and news.