Ivanti zero-days leveraged to infiltrate MITRE

22 April 2024

MITRE Corporation disclosed it was compromised by a nation-state attack leveraging two Ivanti Connect Secure vulnerabilities, tracked as CVE-2023-46805 and CVE-2024-21887, in January, according to The Record, a news site by cybersecurity firm Recorded Future. After infiltrating the Ivanti appliance through the flaws in early January, attackers proceeded with lateral movement to MITRE’s VMware infrastructure by hijacking a stolen administrator account before eventually breaching its unclassified collaborative research and development network, which offers computing, storage, and networking resources, said MITRE Chief Technology Officer Charles Clancy.

Source: SC Magazine

Date:

22 April 2024

Categorie(s):

NEWS

Tag(s):

IT, Ivanti, MITRE, Network Security, News

With its new iPad, Apple’s Empire strikes back6 May 2024
Malware campaign attempts abuse of defender binaries6 May 2024
Microsoft unveils new security features for SOC teams to combat insider threats6 May 2024
BigID launches new hybrid scanning technology for enhance cloud data management6 May 2024
At RSA, Cisco launches bolsters in Security Cloud, built on Hypershield and Splunk6 May 2024