![YusufOnSecurity.com artwork](https://is4-ssl.mzstatic.com/image/thumb/Podcasts114/v4/d3/48/e5/d348e527-7d19-2b5d-9c84-670891351c58/mza_7560021267085777277.jpeg/100x100bb.jpg)
155 - iVanti's widespread exploitation
YusufOnSecurity.com
English - January 20, 2024 17:00 - 42 minutes - 29.5 MBTechnology cyber security security threats vulnerability exploits malware virus trojan horse worm cve Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
When things go wrong, they go wrong fast. This week will dive into the widespread exploitation on iVanti VPN solution that attracted a lot of attention from both the security community as well as from the bad guys. What went wrong? Stay tuned.
Just before we get into iVanti, lets review the other top security news this week.
- https://psirt.global.sonicwall.com: CVE-2022-22274
- https://psirt.global.sonicwall.com: CVE-2023-0656
- https://forums.ivanti.com: CVE-2023-46805 Authentication Bypass and CVE-2024-21887 Command Injection for Ivanti Connect Secure and Ivanti Policy Secure Gateways
- https://forums.ivanti.com: Pulse Connect Secure (PCS) Integrity Assurance
- https://www.mandiant.com: Suspected APT targets Ivanti zeroday
Be sure to subscribe!
If you like the content. Follow me @iayusuf or read my blog at https://yusufonsecurity.com
You will find a list of all previous episodes in there too.