Vulnerabilities Exploitation of Ivanti Sentry Zero-Day Confirmed While initially it was unclear if the Ivanti Sentry vulnerability CVE-2023-38035 has been exploited, the vendor and CISA have now confirmed it. Eduard KovacsAugust 23, 2023
Vulnerabilities Ivanti Patches Critical Vulnerability in Avalanche Enterprise MDM Solution Ivanti has patched critical- and high-severity vulnerabilities with the latest release of Avalanche, its enterprise mobile device management solution. Ionut ArghireAugust 16, 2023
Vulnerabilities Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed Exploitation of the Ivanti EPMM flaw CVE-2023-35078 is picking up as a new critical vulnerability tracked as CVE-2023-35082 is disclosed. Eduard KovacsAugust 4, 2023
Malware & Threats Ivanti Zero-Day Exploited by APT Since at Least April in Norwegian Government Attack The recently patched Ivanti EPMM zero-day CVE-2023-35078 has been exploited to hack the Norwegian government since at least April 2023. Eduard KovacsAugust 2, 2023
Malware & Threats Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks Ivanti EPMM customers have been warned of CVE-2023-35081, a second zero-day vulnerability that has been exploited in targeted attacks. Eduard KovacsJuly 31, 2023
Cybercrime Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government An Ivanti EPMM product zero-day vulnerability tracked as CVE-2023-35078 has been exploited in an attack aimed at the Norwegian government. Eduard KovacsJuly 25, 2023