all InfoSec news
Onslaught of attacks aimed at Ivanti zero-days continues
SC Magazine feed for Risk Management www.scmagazine.com
Global attacks targeting Ivanti Connect Secure VPN appliances vulnerable to both CVE-2023-46805 and CVE-2024-21887, have been underway, with 492 of 26,000 internet-exposed devices being compromised with backdoors, reports Ars Technica. The U.S. accounted for the most number of impacted VPNs, with Germany, South Korea, China, and Japan having the next largest number of compromised devices, a report from Censys showed. Most of the infected VPNs were discovered to be hosted by Microsoft's customer cloud service. The findings also showed a …
ars technica attacks backdoors china compromised connect cve cve-2023-46805 cve-2024-21887 devices endpointdevice-security exposed germany global internet ivanti ivanti connect secure ivanti connect secure vpn japan korea next patchconfiguration-management reports secure vpn south south korea targeting vpn vpns vulnerability management vulnerable zero-days