Security News > 2024 > January > Chinese Hackers Exploit Zero-Day Flaws in Ivanti Connect Secure and Policy Secure
2024-01-11 05:29
A pair of zero-day flaws identified in Ivanti Connect Secure (ICS) and Policy Secure have been chained by suspected China-linked nation-state actors to breach less than 10 customers. Cybersecurity firm Volexity, which identified the activity on the network of one of its customers in the second week of December 2023, attributed it to a hacking group it tracks under the name UTA0178
News URL
https://thehackernews.com/2024/01/chinese-hackers-exploit-zero-day-flaws.html
Related news
- MITRE says state hackers breached its network via Ivanti zero-days (source)
- ArcaneDoor hackers exploit Cisco zero-days to breach govt networks (source)
- State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage (source)
- Hackers exploit Ray framework flaw to breach servers, hijack resources (source)
- A “cascade” of errors let Chinese hackers into US government inboxes (source)
- Ivanti Rushes Patches for 4 New Flaws in Connect Secure and Policy Secure (source)
- Researchers Identify Multiple China Hacker Groups Exploiting Ivanti Security Flaws (source)
- Hackers Exploit Magento Bug to Steal Payment Data from E-commerce Websites (source)
- Hackers Deploy Python Backdoor in Palo Alto Zero-Day Attack (source)
- Hackers Exploit Fortinet Flaw, Deploy ScreenConnect, Metasploit in New Campaign (source)