Jan. 10, 2024, 7:05 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news


Volexity has uncovered active in-the-wild exploitation of two vulnerabilities allowing unauthenticated remote code execution in Ivanti Connect Secure VPN devices. An official security advisory and knowledge base article have been released by Ivanti that includes mitigation that should be applied immediately. However, a mitigation does not remedy a past or ongoing compromise. Systems should simultaneously be thoroughly analyzed per details in this post to look for signs of a breach.


During the second week of December 2023, Volexity detected suspicious …

advisory article base code code execution connect devices exploitation ivanti knowledge knowledge base mitigation official remedy remote code remote code execution secure vpn security security advisory unauthenticated uncovered volexity vpn vulnerabilities zero-day zero-day vulnerabilities

Information Security Engineers

@ D. E. Shaw Research | New York City

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

Cloud Security Engineer

@ City National Bank of Florida | Miami, FL, United States

Principal Security Engineer

@ VIANT | New York City

Associate Detection & Response Analyst

@ Rapid7 | VA Arlington 22203