Security News > 2024 > January > Nation-State Actors Weaponize Ivanti VPN Zero-Days, Deploying 5 Malware Families
2024-01-12 13:53
As many as five different malware families were deployed by suspected nation-state actors as part of post-exploitation activities leveraging two zero-day vulnerabilities in Ivanti Connect Secure (ICS) VPN appliances since early December 2023. "These families allow the threat actors to circumvent authentication and provide backdoor access to these devices," Mandiant said in an
News URL
https://thehackernews.com/2024/01/nation-state-actors-weaponize-ivanti.html
Related news
- Cisco warns of NX-OS zero-day exploited to deploy custom malware (source)
- Chinese Hackers Exploiting Cisco Switches Zero-Day to Deliver Malware (source)
- Windows MSHTML zero-day used in malware attacks for over a year (source)
- Week in review: VMware ESXi zero-day exploited, SMS Stealer malware targeting Android users (source)
- North Korean hackers exploit VPN update flaw to install malware (source)