Jan. 10, 2024, 7:05 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news


Volexity has uncovered active in-the-wild exploitation of two vulnerabilities allowing unauthenticated remote code execution in Ivanti Connect Secure VPN devices. An official security advisory and knowledge base article have been released by Ivanti that includes mitigation that should be applied immediately. However, a mitigation does not remedy a past or ongoing compromise. Systems should simultaneously be thoroughly analyzed per details in this post to look for signs of a breach.


During the second week of December 2023, Volexity detected suspicious …

advisory article base code code execution connect devices exploitation ivanti knowledge knowledge base mitigation official remedy remote code remote code execution secure vpn security security advisory unauthenticated uncovered volexity vpn vulnerabilities zero-day zero-day vulnerabilities

Digital Security Infrastructure Manager

@ Wizz Air | Budapest, HU, H-1103

Sr. Solution Consultant

@ Highspot | Sydney

Cyber Security Analyst III

@ Love's Travel Stops | Oklahoma City, OK, US, 73120

Lead Security Engineer

@ JPMorgan Chase & Co. | Tampa, FL, United States

GTI Manager of Cybersecurity Operations

@ Grant Thornton | Tulsa, OK, United States

GCP Incident Response Engineer

@ Publicis Groupe | Dallas, Texas, United States