all InfoSec news
Threat Actors Exploiting Ivanti EPMM Vulnerabilities
Malware Analysis, News and Indicators - Latest topics malware.news
SUMMARY
The Cybersecurity and Infrastructure Security Agency (CISA) and the Norwegian National Cyber Security Centre (NCSC-NO) are releasing this joint Cybersecurity Advisory (CSA) in response to active exploitation of CVE-2023-35078 and CVE-2023-35081. Advanced persistent threat (APT) actors exploited CVE-2023-35078 as a zero day from at least April 2023 through July 2023 to gather information from several Norwegian organizations, as well as to gain access to and compromise a Norwegian government agency’s network.
Ivanti released a patch for CVE-2023-35078 on July …
advanced advanced persistent threat advisory agency april apt cisa csa cve cve-2023-35078 cve-2023-35081 cyber cyber security cybersecurity cybersecurity advisory epmm exploitation exploited exploiting information infrastructure infrastructure security ivanti ivanti epmm july july 2023 national national cyber national cyber security centre ncsc persistent persistent threat response security threat threat actors vulnerabilities