๐ Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware
๐ก Newskategorie: Hacking
๐ Quelle: securityaffairs.com
Threat actors are exploiting recently disclosed zero-day flaws in Ivanti Connect Secure (ICS) VPN devices to deliver KrustyLoader. In early January 2024, software firm Ivanti reported that threat actors were exploiting two zero-day vulnerabilities (CVE-2023-46805, CVE-2024-21887) inย Connect Secure (ICS) and Policy Secureย to remotely execute arbitrary commands on targeted gateways. Researchers from cybersecurity firm Synacktiv published [โฆ] ...