Ivanti CSA bugs leveraged in suspected nation-state attack

15 October 2024

Active exploitation of a trio of Ivanti Cloud Service Appliance zero-days has been conducted by a suspected state-sponsored threat operation in a bid to infiltrate targeted networks and conduct various malicious schemes, The Hacker News reports. After establishing network access by chaining the critical severity path traversal bug, tracked as CVE-2024-8963, with the high severity command injection vulnerability, tracked as CVE-2024-8190, and high-severity authenticated command injection issue, tracked as CVE-2024-9380, attackers proceeded with configured user enumeration and the attempted theft of their credentials, according to an analysis from Fortinet FortiGuard Labs.

Source: SC Magazine

Date:

15 October 2024

Categorie(s):

NEWS

Tag(s):

CSA, IT, Ivanti, News

Warning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials16 November 2024
Swiss cheesed off as postal service used to spread malware16 November 2024
Bloke behind Helix Bitcoin launderette jailed for three years, hands over $400M16 November 2024
Letting chatbots run robots ends as badly as you’d expect16 November 2024
ANZ CIO Challenges: AI, Cybersecurity & Data Analytics for 202515 November 2024