all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Nation-State Actors Weaponize Ivanti VPN Zero-Days, Deploying 5 Malware Families

Add to bookmarks
Jan. 12, 2024, 1:53 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

As many as five different malware families were deployed by suspected nation-state actors as part of post-exploitation activities leveraging two zero-day vulnerabilities in Ivanti Connect Secure (ICS) VPN appliances since early December 2023.
"These families allow the threat actors to circumvent authentication and provide backdoor access to these devices," Mandiant said in an

access authentication backdoor connect december december 2023 devices exploitation families ics ivanti malware mandiant nation nation-state actors post-exploitation state threat threat actors vpn vulnerabilities zero-day zero-days zero-day vulnerabilities

Visit resource

More from thehackernews.com / The Hacker News

CensysGPT: AI-Powered Threat Hunting for Cybersecurity Pros (Webinar) an hour ago | thehackernews.com
advanced ai-powered ai tools artificial +19
Chrome Zero-Day Alert — Update Your Browser to Patch New Vulnerability 4 hours ago | thehackernews.com
actively exploited address alert anonymous +25
What's the Right EDR for You? 4 hours ago | thehackernews.com
and response antivirus business businesses +18
Malicious Android Apps Pose as Google, Instagram, WhatsApp, Spread via Smishing 4 hours ago | thehackernews.com
android android app android apps app +20
Researchers Uncover 'LLMjacking' Scheme Targeting Cloud-Hosted AI Models 6 hours ago | thehackernews.com
access ai models attack cloud +24
New TunnelVision Attack Allows Hijacking of VPN Traffic via DHCP Manipulation 20 hours ago | thehackernews.com
attack bypass cve cve-2024 +25
Kremlin-Backed APT28 Targets Polish Institutions in Large-Scale Malware Campaign 23 hours ago | thehackernews.com
actor apt28 called campaign +23
New Guide: How to Scale Your vCISO Services Profitably 1 day, 3 hours ago | thehackernews.com
access business can ciso +18
Mirai Botnet Exploits Ivanti Connect Secure Flaws for Malicious Payload Delivery 1 day, 3 hours ago | thehackernews.com
authentication authentication bypass botnet bypass +27

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Associate Director Cyber Engineering

@ KBR, Inc. | CO102: 16800 E Centretech Pkwy,Aurora 16800 East Centretech Pkwy Building S75, Aurora, CO, 80011 USA
View on infosec-jobs.com

Application Security Engineering Manager - Security Operations (Boston)

@ Klaviyo | Boston, MA
View on infosec-jobs.com

Azure Security DevOps Engineer

@ Global Payments | North Carolina - Remote
View on infosec-jobs.com

Senior IT Planning Analyst - Cybersecurity PMO

@ Pacific Gas and Electric Company | Oakland, CA, US, 94612
View on infosec-jobs.com

Principal Business Value Consultant

@ Palo Alto Networks | Chicago, IL, United States
View on infosec-jobs.com

Sr. Specialist - Cyber Defence Operations

@ Diageo | Bengaluru Karle Town SEZ
View on infosec-jobs.com
View more jobs