China-backed espionage group hits Ivanti customers again
UNC5221 has a knack for exploiting defects in Ivanti products. The group has exploited at least four vulnerabilities in the vendor’s products since 2023, according to Mandiant.
Advertisement
Ivanti
Silk Typhoon shifted to specifically targeting IT management companies
The Chinese state-backed espionage group started targeting third-party IT services in late 2024, Microsoft researchers said.
Edge device vulnerabilities fueled attack sprees in 2024
The most consequential cyberattacks observed by Darktrace last year were linked to software defects in firewalls and perimeter network technologies.
New zero-day exploit targets Ivanti VPN product
After Ivanti detected the activity, Mandiant says it found malware in impacted devices associated with a Chinese-linked threat group.
CISA warns of hackers exploiting bug for end-of-life Ivanti product
Ivanti's Cloud Service Appliance has a "high severity vulnerability" being exploited in the wild.
Current, former government cyber officials tout industry collaboration advancements
Information sharing between the private sector and the federal government is providing a leg up when responding to vulnerabilities.
Advertisement
Ivanti integrity checker tool needs latest update to work, Five Eyes alert warns
The software company pushed back on the joint advisory, which comes following multiple directives from CISA this year prodding agencies to patch against Ivanti exploits.
CISA orders Ivanti devices targeted by Chinese hackers be disconnected
An updated emergency directive includes instructions on how to bring affected devices back online securely.
CISA issues emergency directive for federal agencies to patch Ivanti VPN vulnerabilities
The agency says the bug is being actively exploited and poses a risk to federal networks.