Ivanti, a cybersecurity firm, disclosed its fifth vulnerability affecting Connect Secure and ZTA Gateways without crediting the researchers who discovered it. The company has issued patches for a high-severity flaw in its VPN appliances. Shadowserver reported scanning and identifying 141 instances showing signs of compromise as of February 9, 2024. Additionally, over 670 IT infrastructures have been compromised by exploiting the Ivanti vulnerability to install the 'DSLog' backdoor. Experts urge a factory reset of the affected appliances and the application of the latest patches to mitigate the risk. Ivanti has faced criticism for its handling of the cyber incident response.
Attackers target new Ivanti XXE vulnerability days after patch https://t.co/FstTUf2vSI
Ivanti VPN Flaw Exploited to Inject Novel Backdoor; Hundreds Pwned: https://t.co/7Z8mZaIzwW by darkreading #infosec #cybersecurity #technology #news
Ivanti Gets Poor Marks for Cyber Incident Response: https://t.co/xvs4vKxPfw by darkreading #infosec #cybersecurity #technology #news
Ivanti Vulnerability Exploited to Install 'DSLog' Backdoor on 670+ IT Infrastructures: https://t.co/SeKkNGLAqs by The Hacker News #infosec #cybersecurity #technology #news
🛑 Urgent: Hackers exploit Ivanti security flaw to deploy stealthy DSLog backdoor. Don't wait – factory reset appliances and apply the latest patches immediately. Learn more: https://t.co/2RHHEN3qgR #hacking #cybersecurity #infosecurity
Fortinet, Ivanti Keep Customers Busy With Yet More Critical Bugs: https://t.co/LEOVaczhBI by darkreading #infosec #cybersecurity #technology #news
As of 2024-02-09 we are also scanning & reporting Ivanti Connect Secure instances that show signs of compromise as described by @orangecyberdef in Journey to the core of the DSLog backdoor: https://t.co/ul0F5noCFH Data in: https://t.co/D1KZAGvfTr 2024-02-09 scan: 141 instances https://t.co/7uvx66EoxQ
Ivanti Patches High-Severity Vulnerability in VPN Appliances #cybersecurity https://t.co/D6u5eZRJYu
Ivanti discloses fifth vulnerability, doesn't credit researchers who found it https://t.co/VESEu0dVgS
Warning: New Ivanti Auth Bypass Flaw Affects Connect Secure and ZTA Gateways: https://t.co/AImpsnaPM1 by The Hacker News #infosec #cybersecurity #technology #news