Security News > 2024 > February > Warning: New Malware Emerges in Attacks Exploiting Ivanti VPN Vulnerabilities
![Warning: New Malware Emerges in Attacks Exploiting Ivanti VPN Vulnerabilities](/static/build/img/news/warning-new-malware-emerges-in-attacks-exploiting-ivanti-vpn-vulnerabilities-medium.jpg)
2024-02-01 07:43
Google-owned Mandiant said it identified new malware employed by a China-nexus espionage threat actor known as UNC5221 and other threat groups during post-exploitation activity targeting Ivanti Connect Secure VPN and Policy Secure devices.
This includes custom web shells such as BUSHWALK, CHAINLINE, FRAMESTING, and a variant of LIGHTWIRE.
News URL
https://thehackernews.com/2024/02/warning-new-malware-emerges-in-attacks.html
Related news
- DarkGate Malware Replaces AutoIt with AutoHotkey in Latest Cyber Attacks (source)
- Hackers Use MS Excel Macro to Launch Multi-Stage Malware Attack in Ukraine (source)
- More_eggs Malware Disguised as Resumes Targets Recruiters in Phishing Attack (source)
- Pakistani Hackers Use DISGOMOJI Malware in Indian Government Cyber Attacks (source)
- FakeBat Loader Malware Spreads Widely Through Drive-by Download Attacks (source)
- Hackers attack HFS servers to drop malware and Monero miners (source)
- GootLoader Malware Still Active, Deploys New Versions for Enhanced Attacks (source)
- ViperSoftX Malware Disguises as eBooks on Torrents to Spread Stealthy Attacks (source)
- Windows MSHTML zero-day used in malware attacks for over a year (source)
- PHP Vulnerability Exploited to Spread Malware and Launch DDoS Attacks (source)