all InfoSec news
APT Group Targets Ivanti Flaws
Malware Analysis, News and Indicators - Latest topics malware.news
Researchers have discovered evidence of an unidentified APT group exploiting the recently disclosed Ivanti vulnerabilities to install malware, webshells, and other malicious tools, and say the activity began well before the bugs were publicly known.
The two vulnerabilities (CVE-2023-46805 and CVE-2024-21887) affect all supported versions of the company’s Connect Secure and Pulse Secure gateway appliances and Ivanti released an advisory on Jan. 10 detailing them and said that it was aware of active exploitation against fewer than 20 of its …
apt apt group bugs connect cve cve-2023-46805 cve-2024-21887 exploiting flaws gateway install ivanti malicious malware pulse pulse secure researchers the company tools vulnerabilities webshells