News Snapshot:
Security researchers say a pair of easy-to-exploit flaws in a popular remote access tool used by more than a million companies around the world are now being mass-exploited, with hackers abusing the vulnerabilities to deploy ransomware and steal sensitive data. Cybersecurity giant Mandiant said in a post on Friday that it has “identified mass exploitation” of the two flaws in ConnectWise ScreenConnect, a popular remote access tool that allows IT and technicians to remotely provide technical support directly on customer systems over the internet. The two vulnerabilities comprise CVE-2024-1709, an authentication bypass vulnerability that researchers deemed “embarrassingly easy” for attackers...
News Timeline:
Track the development of related news across the Internet.
February 9, 2024
02:46
Researchers say attackers are mass-exploiting new Ivanti VPN flaw
Source: techcrunch.com
February 6, 2024
09:30
As if two Ivanti vulnerabilities under exploit weren’t bad enough, now there are 3
Source: arstechnica.com
January 24, 2024
08:36
Mass exploitation of Ivanti VPNs is infecting networks around the globe
Source: arstechnica.com
