Ivanti zero-day attacks infected devices with custom malware

Hackers exploit critical Aviatrix Controller RCE flaw in attacks

bleepingcomputer.com - 13/Jan 17:57

Threat actors are exploiting a critical remote command execution vulnerability, tracked as CVE-2024-50603, in Aviatrix Controller instances to install...

Week in review: Exploited Ivanti Connect Secure zero-day, Patch Tuesday forecast

itsecuritynews.info - 12/Jan 09:34

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Ivanti Connect Secure zero-day exploited by...

SonicWall warns of a critical CVE-2025-23006 zero-day likely exploited in the wild

securityaffairs.co - 09:36

SonicWall warns customers of a critical zero-day vulnerability in SMA 1000 Series appliances, likely exploited in the wild. SonicWall is waring...

A new campaign is likely targeting a zero-day in Fortinet FortiGate firewalls

securityaffairs.co - 14/Jan 12:20

Experts warn of a new campaign targeting an alleged zero-day in Fortinet FortiGate firewalls with management interfaces exposed online. Arctic Wolf...

UK domain registry Nominet confirms breach via Ivanti zero-day

bleepingcomputer.com - 13/Jan 16:50

Nominet, the official .UK domain registry and one of the largest country code registries, has confirmed that its network was breached two weeks ago...

CISA: Hackers still exploiting older Ivanti bugs to breach networks

bleepingcomputer.com - 23/Jan 16:51

CISA and the FBI warned today that attackers are still exploiting Ivanti Cloud Service Appliances (CSA) security flaws patched since September to...

Hacker infects 18,000 "script kiddies" with fake malware builder

bleepingcomputer.com - 16:34

A threat actor targeted low-skilled hackers, known as "script kiddies," with a fake malware builder that secretly infected them with a backdoor to...

Are Chinese devices a security threat in Aussie homes?

ia.acs.org.au - 22/Jan 21:50

Experts identify smart doorbell allegedly compromised by hackers.

IPany VPN breached in supply-chain attack to push custom malware

bleepingcomputer.com - 22/Jan 15:11

South Korean VPN provider IPany was breached in a supply chain attack by the "PlushDaemon" China-aligned hacking group, who compromised the...

Chinese threat actors used two advanced exploit chains to hack Ivanti CSA

securityaffairs.co - 23/Jan 14:23

US agencies revealed Chinese threat actors used two advanced exploit chains to breach Ivanti Cloud Service Appliances (CSA). The US government’s...

Rubriques :