Advertisement
Top

Researchers Identify Multiple China Hacker Groups Exploiting Ivanti Security Flaws

April 5, 2024

Via: The Hacker News
Category:

Multiple China-nexus threat actors have been linked to the zero-day exploitation of three security flaws impacting Ivanti appliances (CVE-2023-46805, CVE-2024-21887, and CVE-2024-21893).

The clusters are being tracked by Mandiant under the monikers UNC5221, UNC5266, UNC5291, UNC5325, UNC5330, and UNC5337. Another group linked to the exploitation spree is UNC3886.

The Google Cloud subsidiary said it has also observed financially motivated actors exploiting CVE-2023-46805 and CVE-2024-21887, likely in an attempt to conduct cryptocurrency mining operations.

Read More on The Hacker News

RELATED PUBLICATIONS

CISA Alerts on Active Exploitation of Flaws in Fortinet, Ivanti, and Nice Products
A worrying amount of apps found to have high-severity security flaws
Third-party Amazon Echo and Google Home apps are a minefield of scary security flaws

Latest Publications

How cloud cost visibility impacts business and employment
Blurring Boundaries Between Realities In The Metaverse
Worrying bug is kicking people out of their Apple ID accounts – here’s everything you need to know
As quantum computers advance, encryption methods will need to keep up
China-Linked ‘Muddling Meerkat’ Hijacks DNS to Map Internet on Global Scale
Technology Curated Copyright © 2024. All rights reserved