Threat Actors Exploit Multiple Vulnerabilities in Ivanti Connect Secure and Policy Secure Gateways
Created: Thursday, February 29, 2024 - 22:06
Categories:
CISA, FBI, MS-ISAC, and other international partners released a joint Cybersecurity Advisory (CSA) today to emphasize that cyber threat actors continue exploiting previously identified vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure gateways. Specifically, that threat actors continue to demonstrate the ability to deceive Ivanti’s internal and external Integrity Checker Tool (ICT), resulting in failure to detect compromise. Utilities using the impacted Ivanti products are urged to address accordingly. WaterISAC previously reported on the Ivanti vulnerabilities, highlighting the impact to critical infrastructure entities.