Tag: vpn
-
Ongoing attacks on Ivanti VPNs install a ton of sneaky, well-written malware
In-the-wild attacks tamper with built-in security tool to suppress infection warnings. First seen on arstechnica.com Jump to article: arstechnica.com/security/2025/01/ivanti-vpn-users-are-getting-hacked-by-actors-exploiting-a-critical-vulnerability/
-
Chinese spies targeting new Ivanti vulnerability, Mandiant says
A recently discovered bug in Ivanti’s Connect Secure VPN appears to be a target for malware previously only deployed by China-based hackers, say researchers for Google’s Mandiant team.]]> First seen on therecord.media Jump to article: therecord.media/china-espionage-ivanti-vulnerabilities-mandiant
-
SonicWall firewall hit with critical authentication bypass vulnerability
SonicWall is warning customers of a severe vulnerability in its SonicOS SSLVPN with high exploitability that remote attackers could use to bypass authentication.The bug is an improper authentication vulnerability in the SSL VPN authentication mechanism, according to emails sent to customers and published on SonicWall’s official subreddit.”We have identified a high (severity) firewall vulnerability that…
-
Ivanti VPN Attacks Started In Mid-December, May Have Links To China: Mandiant
Researchers at Google Cloud-owned Mandiant say that the exploitation of a critical Ivanti Connect Secure vulnerability began in December 2024 and may be connected to a China-based threat group. First seen on crn.com Jump to article: www.crn.com/news/security/2025/ivanti-vpn-attacks-started-in-mid-december-may-have-links-to-china-mandiant
-
New zero-day exploit targets Ivanti VPN product
Mandiant says it found malware in impacted devices associated with a Chinese-linked threat group. First seen on cyberscoop.com Jump to article: cyberscoop.com/ivanti-vpn-vulnerabilities-zero-day-exploit-china-cisa/
-
IPVanish VPN Review: Is It Really as Secure as Claimed?
Read our comprehensive review of IPVanish VPN. Discover its features, pricing, and more to determine if it meets your online security and privacy needs. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/ipvanish-vpn-review/
-
Chinese hackers likely behind Ivanti VPN zero-day attacks
Hackers exploiting the critical Ivanti Connect Secure zero-day vulnerability disclosed yesterday installed on compromised VPN appliances new malware called ‘Dryhook’ and ‘Phasejam’ that is not currently associated with any threat group. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-chinese-hackers-likely-behind-ivanti-vpn-zero-day-attacks/
-
Ivanti Discloses Exploitation Of ‘Critical’ VPN Vulnerability
Ivanti’s Connect Secure VPN is vulnerable to a critical-severity zero-day vulnerability that has been exploited in attacks as well as a second, high-severity flaw, the company says. First seen on crn.com Jump to article: www.crn.com/news/security/2025/ivanti-discloses-exploitation-of-critical-vpn-vulnerability
-
Hackers are exploiting a new Ivanti VPN security bug to hack into company networks
Mandiant says a Chinese cyberespionage group has been exploiting the critical-rated vulnerability since at least mid-December. First seen on techcrunch.com Jump to article: techcrunch.com/2025/01/09/hackers-are-exploiting-a-new-ivanti-vpn-security-bug-to-hack-into-company-networks/
-
Zero-Day Patch Alert: Ivanti Connect Secure Under Attack
Suspected Chinese Attackers Again Tied to Active Exploitation of VPN Appliances. VPN appliance maker Ivanti has begun releasing updates to patch a zero-day vulnerability being actively exploited by suspected nation-state attackers. Experts are warning users to immediately update their devices, after factory resetting them to flush any malware attackers may have installed. First seen on…
-
Exploitation of New Ivanti VPN Zero-Day Linked to Chinese Cyberspies
Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies. The post Exploitation of New Ivanti VPN Zero-Day Linked to Chinese Cyberspies appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/exploitation-of-new-ivanti-vpn-zero-day-linked-to-chinese-cyberspies/
-
Ivanti warns critical RCE flaw in Connect Secure exploited as zero-day
Tags: advisory, apt, attack, authentication, cve, cvss, cybersecurity, data-breach, exploit, flaw, google, government, group, intelligence, Internet, ivanti, law, mandiant, microsoft, network, rce, remote-code-execution, risk, software, threat, tool, vpn, vulnerability, zero-dayIT software provider Ivanti released patches Wednesday for its Connect Secure SSL VPN appliances to address two memory corruption vulnerabilities, one of which has already been exploited in the wild as a zero-day to compromise devices.The exploited vulnerability, tracked as CVE-2025-0282, is a stack-based buffer overflow rated as critical with a CVSS score of 9.0.…
-
Zero-Day Alert: UNC5337 Exploits Ivanti VPN Vulnerability CVE-2025-0282 for Espionage Operations
Ivanti Connect Secure (ICS) VPN appliances have become the focus of advanced threat actors, exploiting a newly disclosed First seen on securityonline.info Jump to article: securityonline.info/zero-day-alert-unc5337-exploits-ivanti-vpn-vulnerability-cve-2025-0282-for-espionage-operations/
-
SonicWall warns of an exploitable SonicOS vulnerability
SonicWall warns customers to address an authentication bypass vulnerability in its firewall’s SonicOS that is >>susceptible to actual exploitation.
-
SonicWall urges admins to patch exploitable SSLVPN bug immediately
SonicWall is emailing customers urging them to upgrade their firewall’s SonicOS firmware to patch an authentication bypass vulnerability in SSL VPN and SSH management that is “susceptible to actual exploitation.” First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/sonicwall-urges-admins-to-patch-exploitable-sslvpn-bug-immediately/
-
Zero-Day-Sicherheitslücke in Sonicwall SSL-VPN wird angegriffen
Sonicwall hat Updates zum Schließen aktiv angegriffener Sicherheitslücken in SonicOS angekündigt. Betroffen ist das SSL-VPN und SSH-Management. First seen on heise.de Jump to article: www.heise.de/news/Zero-Day-Sicherheitsluecke-in-Sonicwall-SSL-VPN-wird-angegriffen-10229915.html
-
VPN-Test hide.me: unser Haus- und Hof-VPN unter der Lupe
Tags: vpnErfahre im neuen Hide.me VPN Test, wie der Dienst aus Malaysia in puncto Sicherheit, Geschwindigkeit und Benutzerfreundlichkeit abschneidet. First seen on tarnkappe.info Jump to article: tarnkappe.info/test/hide-me-vpn-im-test-unsere-erfahrungen-mit-leistung-und-sicherheit-307041.html
-
The 5 Fastest VPNs for 2025
Tags: vpnLooking for a VPN that delivers speed and security? We’ve rounded up the best of the best, take a look and see which one’s perfect for you! First seen on techrepublic.com Jump to article: www.techrepublic.com/article/fastest-vpns/
-
Altersverifikation in Florida: Pornhub-Sperre lässt VPN-Nachfrage explodieren
Tags: vpnSeit dem 1. Januar müssen Pornoportale das Alter ihrer Nutzer aus Florida prüfen. Pornhub protestiert mit einer Sperre – und Anwender umgehen sie. First seen on golem.de Jump to article: www.golem.de/news/altersverifikation-in-florida-pornhub-sperre-laesst-vpn-nachfrage-explodieren-2501-192143.html
-
Pornhub pulls out of Florida, VPN demand ‘surges 1150%’
Tags: vpnState masks up finally its IP addresses, that is First seen on theregister.com Jump to article: www.theregister.com/2025/01/05/pornhub_vpn_demand_surge/
-
Proton VPN v6.3.46.0 Crack für Android App erschienen
Nach längerer Pause ist nun wieder eine illegale Version der Android-App von Proton VPN aufgetaucht. Sollte man die App besser meiden? First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/szene/warez/proton-vpn-v6-3-46-0-crack-fuer-android-app-erschienen-306969.html
-
PLAYFULGHOST Delivered via Phishing and SEO Poisoning in Trojanized VPN Apps
Cybersecurity researchers have flagged a new malware called PLAYFULGHOST that comes with a wide range of information-gathering features like keylogging, screen capture, audio capture, remote shell, and file transfer/execution.The backdoor, according to Google’s Managed Defense team, shares functional overlaps with a known remote administration tool referred to as Gh0st RAT, which had its source First…
-
Best of 2024: If You are Reachable, You Are Breachable, and Firewalls VPNs are the Front Door
Firewalls and VPN appliances are critical gateways. Like all on-prem systems, a vulnerability can lead to a compromise that is used to open the door for attackers. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/01/if-you-are-reachable-you-are-breachable-and-firewalls-vpns-are-the-front-door-2/
-
Millionen Nutzer gefährdet: Schadcode in 36 Chrome-Extensions eingeschleust
Bei den betroffenen Chrome-Erweiterungen handelt es sich um KI-Tools, Passwortmanager, VPNs und mehr. Zusammen kommen sie auf 2,6 Millionen Nutzer. First seen on golem.de Jump to article: www.golem.de/news/millionen-nutzer-gefaehrdet-schadcode-in-36-chrome-extensions-eingeschleust-2501-192093.html
-
TotalAV VPN vs Surfshark: Which VPN Should You Choose?
TotalAV combines a simple VPN with antivirus software, while Surfshark offers a standalone VPN with better features and faster speeds. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/total-av-vpn-vs-surfshark/
-
Cloudflare’s VPN app among half-dozen pulled from Indian app stores
More than half-a-dozen VPN apps, including Cloudflare’s widely-used 1.1.1.1, have been pulled from India’s Apple App Store and Google Play Store following intervention from government authorities, TechCrunch has learned. The Indian Ministry of Home Affairs issued removal orders for the apps, according to a document reviewed by TechCrunch and a disclosure made by Google to…
-
Hackers target dozens of VPN and AI extensions for Google Chrome to compromise data
As of Wednesday, a total of 36 Chrome extensions injected with data-stealing code have been detected, mostly related to artificial intelligence tools and virtual private networks.]]> First seen on therecord.media Jump to article: therecord.media/hackers-target-vpn-ai-extensions-google-chrome-malicious-updates
-
Exposing the Rogue Cyberheaven Compromised Chrome VPN Extensions Ecosystem An Analysis
Here we go. It appears that the individuals behind the successful compromise of the Cyberheaven VPN Chrome extensions are currently busy or at least have several other upcoming and in the works campaigns targeting several other vendors of Chrome VPN extensions. The first example is hxxp://censortracker.pro which apparently aims to target the legitimate (hxxp://censortracker.org). Relate…
-
How are you securing your communications in the wake of the Volt Typhoon revelations?
Tags: access, advisory, android, apple, apt, attack, authentication, business, china, cisa, cisco, cloud, communications, computer, control, cyber, cybersecurity, detection, email, endpoint, espionage, exploit, firewall, firmware, government, group, Hardware, infrastructure, Internet, Intruder, microsoft, network, phishing, ransomware, risk, service, software, technology, threat, tool, update, vpn, vulnerability, windows, zero-dayThe FBI recently released information that text messages between Apple and Android texting systems were insecure and that attackers could listen in and access those communications, more fallout from the revelation that a Chinese-affiliated threat actor had breached telecommunications companies.The announcement that the group known as Salt Typhoon had compromised networks of major global telecommunications…