A Chinese cyberspy group, UTA0178, has been exploiting vulnerabilities in Ivanti VPN to deploy the KrustyLoader malware, cryptocurrency miners, and the Golang-based Silver post-exploitation framework. The group has also targeted Italian businesses with weaponized USBs spreading cryptojacking malware. Unfixed vulnerabilities in Ivanti Connect Secure, including CVE-2024-21888 and CVE-2024-21893, have been highlighted, posing serious security risks.
Hey everybody there are unfixed vulnerabilities in Ivanti Connect Secure! No, not those (which are STILL unfixed). The new ones: CVE-2024-21888 (privesc to admin) and CVE-2024-21893 (SSRF to access "restricted resources") mitigation.release.20240126.5.xml https://t.co/hYaMum0uR7 https://t.co/W88DB9LKpM
Unknown hacker groups weaponized Ivanti VPN vulnerabilities to deploy the Rust-based KrustyLoader, #cryptocurrency miners, and the Golang-based Silver post-exploitation framework. Read details here → https://t.co/31eaI7uAmJ #hacking
Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware: https://t.co/AYyxMKhTdA by Security Affairs #infosec #cybersecurity #technology #news
Italian Businesses Hit by Weaponized USBs Spreading Cryptojacking Malware: https://t.co/ymVQrAXOL4 by The Hacker News #infosec #cybersecurity #technology #news
⚠️ Nation-state hacker group UTA0178 weaponized Ivanti VPN vulnerabilities to deploy the Rust-based KrustyLoader, #cryptocurrency miners, and the Golang-based Silver post-exploitation framework. Read details here → https://t.co/31eaI7uAmJ #hacking #cybersecurity
Chinese Hackers Exploiting VPN Flaws to Deploy KrustyLoader Malware: https://t.co/bnB0xz4e0b by The Hacker News #infosec #cybersecurity #technology #news
⚠️ Chinese nation-state hacker group UTA0178 weaponized Ivanti VPN vulnerabilities to deploy the Rust-based KrustyLoader, #cryptocurrency miners, and the Golang-based Silver post-exploitation framework. Read details here → https://t.co/31eaI7uAmJ #hacking #cybersecurity
Ivanti Zero-Day Patches Delayed as 'KrustyLoader' Attacks Mount: https://t.co/1mRYv7euxX by darkreading #infosec #cybersecurity #technology #news
Elusive Chinese Cyberspy Group Hijacks Software Updates to Deliver Malware #cybersecurity https://t.co/cU6e91WQFI