Ivanti

Response to CISA Advisory (AA25-022A): Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications

| | cisa, Cloud, Cybersecurity Advisory, Cybersecurity Advisory (CSA), Ivanti, RaaS, Ransomware, Remote Code Execution (RCE)
AttackIQ has released a new assessment template in response to the CISA Advisory (AA25-022A) published on January 22, 2025, which details the exploitation of vulnerabilities discovered in Ivanti Cloud Service Appliances during ...
AttackIQ

Response to CISA Advisory (AA25-022A): Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications

| | cisa, Cloud, Cybersecurity Advisory, Cybersecurity Advisory (CSA), Ivanti, RaaS, Ransomware, Remote Code Execution (RCE)
AttackIQ has released a new assessment template in response to the CISA Advisory (AA25-022A) published on January 22, 2025, which details the exploitation of vulnerabilities discovered in Ivanti Cloud Service Appliances during ...
AttackIQ

Alert of Buffer Overflow Vulnerabilities in Multiple Ivanti Products (CVE-2025-0282)

| | Blog, Buffer Overflow, CVE-2025-0282, DDoS Mitigation, Ivanti
Overview Recently, NSFOCUS detected that Ivanti issued a security announcement and fixed buffer overflow vulnerabilities (CVE-2025-0282) in several products of Ivanti. Due to the stack-based buffer overflow in Ivanti Connect Secure, Ivanti ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.
vulnerability management, thrat, Jenkins CI/CD vulnerability

Chinese-linked Hackers May Be Exploiting Latest Ivanti Vulnerability

| | Chinese cyber espionage, Ivanti, Vulnerabilities
Software maker Ivanti, which for more than a year has been plagued by security flaws in its appliance, unveiled two new ones this week, with Mandiant researchers saying that one likely is ...
Security Boulevard

TuxCare’s KernelCare Enterprise Featured on Ivanti Marketplace

| | Ivanti, KernelCare, TuxCare, TuxCare and Ivanti partnershii, TuxCare News
PALO ALTO, Calif. – August 20, 2024 – TuxCare, a global innovator in enterprise-grade cybersecurity for Linux, today announced that KernelCare Enterprise is now a featured solution on the Ivanti Marketplace.    ...
TuxCare
Director of the Cybersecurity and Infrastructure Security Agency, Jen Easterly

Irony of Ironies: CISA Hacked — ‘by China’

| | china, china espionage, Chinese, Chinese Communists, Chinese drive-by attack, chinese government, chinese hacker, Chinese hackers, Chinese state-sponsored hacking group, Chinese Threat Actors, CIRCIA, cisa, CISA.gov, CVE-2023-46805, CVE-2024-21887, CVE-2024-21893, Cyber Security and Infrastructure Security Agency, Cybersecurity & Infrastructure Security Agency, Cybersecurity and Infrastructure Agency, Data Stolen By China, federal agency, Ivanti, Ivanti Connect Secure, Ivanti Policy Secure, Ivanti security, Ivanti Vulnerabilities, Ivanti Zero day vulnerability, Ligolo, Magnet Goblin, NerbianRAT, NSA/CISA, Peoples Republic of China, SB Blogwatch, Volt Typhoon, WARPWIRE
Free rides and traffic jams: U.S. Cybersecurity and Infrastructure Security Agency penetrated in February, via vuln in Ivanti ...
Security Boulevard
Headshot of Ivanti CEO, Jeff Abbott

Ivanti VPN Zero-Day Combo Chained ‘by China’

| | CVE-2023-46805, CVE-2024-21887, Ivanti, ivanti acquisition, Ivanti Zero day vulnerability, SB Blogwatch, Zero Day Attacks, zero-day, zero-day attack, Zero-Day Bug, Zero-day Exploit, zero-day exploits, zero-day flaw, zero-day flaws, zero-day threat, Zero-day threats, zeroday, zerodayvulnerabilities
Under active exploitation since last year—but still no patch available ...
Security Boulevard
LockBit ransomware ransom

Report Reveals Rise in Ransomware Attacks

| | Cybersecurity, Ivanti, Kaseya, Ransomware, REvil ransomwaare
A report published today suggests the ransomware scourge may be on the cusp of entering a more lethal phase as the number of vulnerabilities associated with ransomware capable of remote code execution ...
Security Boulevard
Log4j Log4Shell patching Security Patches Move Faster

Patching Process Remains a Security Bottleneck

| | enterprise risk management, Ivanti, patch and vulnerability management, patch management, patching, software vulnerability
Patching continues to be overly complex, cumbersome and time-consuming, trends that are likely to persist as remote work increases the complexity and scale of patch management. And that’s a major security risk ...
Security Boulevard
Microsoft Patch Tuesday, October 2020 Edition

Microsoft Patch Tuesday, October 2020 Edition

| | CVE-2020-16898, CVE-2020-16947, Dustin Childs, Flash Player patch, Ivanti, mcafee, Microsoft Patch Tuesday October 2020, Steve Povolny, Time to Patch, Todd Schell, Trend Micro, Zero Day Initiative
It's Cybersecurity Awareness Month! In keeping with that theme, if you (ab)use Microsoft Windows computers you should be aware the company shipped a bevy of software updates today to fix at least ...
Krebs on Security
Load more