Vulnerabilities Recent Fortinet FortiClient EMS Vulnerability Exploited in Attacks CVE-2023-48788, a critical SQL injection vulnerability in Fortinet’s FortiClient EMS product, is being exploited in the wild. Eduard KovacsMarch 26, 2024
Vulnerabilities Ivanti Patches Critical Vulnerabilities in Standalone Sentry, Neurons for ITSM Ivanti has released patches for two critical-severity vulnerabilities leading to arbitrary command execution. Ionut ArghireMarch 21, 2024
Government Governments Urge Organizations to Hunt for Ivanti VPN Attacks Credentials stored on Ivanti VPN appliances impacted by recent vulnerabilities are likely compromised, government agencies say. Ionut ArghireMarch 1, 2024
Malware & Threats Chinese Cyberspies Use New Malware in Ivanti VPN Attacks Chinese threat actors target Ivanti VPN appliances with new malware designed to persist system upgrades. Ionut ArghireFebruary 28, 2024
Malware & Threats Ivanti Vulnerability Exploited to Deliver New ‘DSLog’ Backdoor Backdoor deployed using recent Ivanti VPN vulnerability enables command execution, web request and system log theft. Ionut ArghireFebruary 13, 2024
Vulnerabilities Exploitation of Another Ivanti VPN Vulnerability Observed Organizations urged to hunt for potential compromise as exploitation of a recent Ivanti enterprise VPN vulnerability begins. Ionut ArghireFebruary 12, 2024
Vulnerabilities Ivanti Patches High-Severity Vulnerability in VPN Appliances An XXE flaw in Ivanti Connect Secure, Ivanti Policy Secure, and ZTA gateways could lead to unauthenticated access to resources. Ionut ArghireFebruary 9, 2024
Malware & Threats CISA Sets 48-Hour Deadline for Removal of Insecure Ivanti Products In an unprecedented move, CISA is demanding that federal agencies disconnect all instances of Ivanti Connect Secure and Ivanti Policy Secure products within 48... Ryan NaraineFebruary 1, 2024
Malware & Threats After Delays, Ivanti Patches Zero-Days and Confirms New Exploit Ivanti documents a brand-new zero-day and belatedly ships patches; Mandiant is reporting "broad exploitation activity." Ryan NaraineJanuary 31, 2024
Nation-State Ivanti Struggling to Hit Zero-Day Patch Release Schedule Ivanti is struggling to hit its own timeline for the delivery of patches for critical -- and already exploited -- flaws in its flagship... Ryan NaraineJanuary 29, 2024
Malware & Threats CISA Issues Emergency Directive on Ivanti Zero-Days The US government’s cybersecurity agency CISA ramps up the pressure on organizations to mitigate two exploited Ivanti VPN vulnerabilities. Ryan NaraineJanuary 19, 2024
Vulnerabilities Ivanti EPMM Vulnerability Targeted in Attacks as Exploitation of VPN Flaws Increases The number of Ivanti VPN appliances compromised through exploitation of recent flaws increases and another vulnerability is added to exploited list. Eduard KovacsJanuary 19, 2024