Tag: ivanti
-
Breach Roundup: REvil Hacker Gets Nearly 14-Year Sentence
Also: Another Ivanti Zero-Day? And FBI Calls for Strengthening DMARC Policies. This week, REvil hacker sentenced; ZDI saw possible Ivanti-zero-day; FB… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/breach-roundup-revil-hacker-gets-nearly-14-year-sentence-a-25002
-
MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws
The MITRE Corporation revealed that it was the target of a nation-state cyber attack that exploited two zero-day flaws in Ivanti Connect Secure applia… First seen on thehackernews.com Jump to article: thehackernews.com/2024/04/mitre-corporation-breached-by-nation.html
-
Vulnerability Recap 4/22/24 Cisco, Ivanti, Oracle More
First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-april-22-2024/
-
Kritische Lücken in Ivanti Avalanche MDM gefährden Mobilgeräte in Firmen
Tags: ivantiFirst seen on heise.de Jump to article: www.heise.de/news/Kritische-Luecken-in-Ivanti-Avalanche-MDM-gefaehrden-Mobilgeraete-in-Firmen-9687545.html
-
Vulnerability Recap 4/15/24 Palo Alto, Microsoft, Ivanti Exploits
First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-april-15-2024/
-
Ivanti commits to secure-by-design overhaul after vulnerability nightmare
First seen on theregister.com Jump to article: www.theregister.com/2024/04/04/ivanti_secure_by_design/
-
MITRE ATT&CKED: InfoSec’s Most Trusted Name Falls to Ivanti Bugs
The irony is lost on few, as a Chinese threat actor used eight MITRE techniques to breach MITRE itself , including exploiting the Ivanti bugs that at… First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/mitre-attacked-infosecs-most-trusted-name-falls-to-ivanti-bugs
-
MITRE Hacked By State Sponsored Group Via Ivanti Zero Days
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/35800/MITRE-Hacked-By-State-Sponsored-Group-Via-Ivanti-Zero-Days.html
-
MITRE über Ivanti-Schwachstelle kompromittiert
Im April 2024 wurde bekannt, dass das Forschungsnetzwerk von MITRE gehackt wurde. Der Angriff erfolgte durch mutmaßlich staatliche Akteure, die über z… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/04/21/mitre-ber-ivanti-schwachstelle-kompromittiert/
-
Ivanti Patches 27 Vulns In Avalanche MDM Product
Tags: ivantiFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/35792/Ivanti-Patches-27-Vulns-In-Avalanche-MDM-Product.html
-
Vulnerability Recap 4/8/24 Google, HTTP/2 Join Ivanti
First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-april-8-2024/
-
MITRE research and prototyping network breached via Ivanti zero-days
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/mitre-research-and-prototyping-network-breached-via-ivanti-zero-days
-
Ivanti Releases Fixes for More Than 2 Dozen Vulnerabilities
First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/ivanti-releases-fixes-for-more-than-2-dozen-vulnerabilities
-
Ivanti zero-days leveraged to infiltrate MITRE
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/ivanti-zero-days-leveraged-to-infiltrate-mitre
-
Ivanti warnt: Wieder Schwachstellen bei VPN-Verbindungen – Schadcode kann in Netze von Ivanti Connect Secure eindringen
First seen on security-insider.de Jump to article: www.security-insider.de/ivanti-warnung-schwachstellen-connect-secure-policy-secure-gateways-a-9747fc7b8fdd216f06cdda657ca04150/
-
MITRE Reveals Ivanti Breach By Nation State Actor
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/mitre-ivanti-breach-nation-state/
-
MITRE breached by nation-state threat actor via Ivanti zero-days
MITRE has been breached by attackers via two zero-day vulnerabilities (CVE-2023-46805, CVE-2024-21887) in Ivanti’s Connect Secure VPN devices. The att… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/04/22/mitre-breached/
-
MITRE Hacked by State-Sponsored Group via Ivanti Zero-Days
MITRE RD network hacked in early January by a state-sponsored threat group that exploited an Ivanti zero-day vulnerability. The post #038;D network ha… First seen on securityweek.com Jump to article: www.securityweek.com/mitre-hacked-by-state-sponsored-group-via-ivanti-zero-days/
-
MITRE revealed that nation-state actors breached its systems via Ivanti zero-days
The MITRE Corporation revealed that a nation-state actor compromised its systems in January 2024 by exploiting Ivanti VPN zero-days. In April 2024, MI… First seen on securityaffairs.com Jump to article: securityaffairs.com/162045/security/mitre-security-breach-ivanti-zero-days.html
-
Ivanti patches critical Avalanche flaw exploitable via a simple message (CVE-2024-29204)
The newest version of Ivanti Avalanche the company’s enterprise mobile device management (MDM) solution carries fixes for 27 vulnerabilities, two of… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/04/18/cve-2024-29204/
-
Mitre Says Hackers Breached Unclassified R&D Network
Threat Actor Exploited Ivanti Zero-Day Vulnerabilities in Cyberattack. A nation-state threat actor gained access into an unclassified research and dev… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/mitre-says-hackers-breached-unclassified-rd-network-a-24907
-
Ivanti fixed two critical flaws in its Avalanche MDM
Ivanti addressed two critical vulnerabilities in its Avalanche mobile device management (MDM) solution, that can lead to remote command execution. Iva… First seen on securityaffairs.com Jump to article: securityaffairs.com/161952/security/ivanti-avalanche-mdm-critical-flaws.html
-
Breach Roundup: LabHost Phishing-as-a-Service Site Goes Down
Also: Omni Hack Exposed Customer Data; More Ivanti Vulnerabilities Come to Light. This week, police disrupted the LabHost phishing-as-a-service site, … First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/breach-roundup-labhost-phishing-as-a-service-site-goes-down-a-24896
-
Over two dozen Ivanti Avalanche vulnerabilities addressed
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/over-two-dozen-ivanti-avalanche-vulnerabilities-addressed
-
Ivanti Patches Two Critical Avalanche Flaws in Major Update
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ivanti-patches-two-critical/
-
IT-Sicherheitsbehörde CISA warnt erneut wegen Ivanti-Sicherheitslücken
Die US-Cybersicherheitsbehörde fordert nachdrücklich dazu auf, Patches zu installieren, um eine kritische Sicherheitslücke in Ivanti Standalone Sentry… First seen on crn.de Jump to article: www.crn.de/news/4189167/sicherheitsbehorde-cisa-warnt-erneut-wegen-ivanti-sicherheitslucken
-
Breach Roundup: LabHost Goes Down
Also: Omni Hack Exposed Customer Data and More Ivanti Vulnerabilities. This week, police took down the LabHost phishing-as-a-service site, customer da… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/breach-roundup-labhost-goes-down-a-24896
-
Ivanti warns of critical flaws in its Avalanche MDM solution
Ivanti has released security updates to fix 27 vulnerabilities in its Avalanche mobile device management (MDM) solution, two of them critical heap ove… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ivanti-warns-of-critical-flaws-in-its-avalanche-mdm-solution/
-
Ivanti Patches 27 Vulnerabilities in Avalanche MDM Product
Ivanti releases patches for 27 vulnerabilities in the Avalanche MDM product, including critical flaws leading to command execution. The post eleases p… First seen on securityweek.com Jump to article: www.securityweek.com/ivanti-patches-27-vulnerabilities-in-avalanche-mdm-product/