Ivanti – Page 10 – WindowsTechs.com

CISA Warns About New Ivanti EPMM Vulnerabilities

Posted on August 4, 2023 by Rabia Noureen

The Cybersecurity and Infrastructure Security Agency (CISA) has warned about two vulnerabilities in Ivanti’s Endpoint Manager Mobile (EPMM). The security flaws allowed threat actors to compromise 12 Norwegian government agencies. Ivanti’s Endpoint Manager Mobile is a solution that lets IT admins secure and manage mobile devices in enterprise environments. They can enforce policies, deploy applications,…

The post CISA Warns About New Ivanti EPMM Vulnerabilities appeared first on Petri IT Knowledgebase.

Continue reading CISA Warns About New Ivanti EPMM Vulnerabilities→

Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed

Posted on August 4, 2023 by Eduard Kovacs

Exploitation of the Ivanti EPMM flaw CVE-2023-35078 is picking up as a new critical vulnerability tracked as CVE-2023-35082 is disclosed.
The post Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed appeared first on SecurityW… Continue reading Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed→

August 2023 Patch Tuesday forecast: Software security improvements

Posted on August 4, 2023 by Help Net Security

The continued onslaught of phishing attacks, ransomware deployment, and other exploitation is forcing the community to pay closer attention to early identification, as well as fast response, to vulnerabilities in their software. In July alone Microsoft… Continue reading August 2023 Patch Tuesday forecast: Software security improvements→

Ivanti discloses another vulnerability in MobileIron Core (CVE-2023-35082)

Posted on August 3, 2023 by Helga Labus

Ivanti has disclosed a critical vulnerability (CVE-2023-35082) affecting old, out-of-support versions of MobileIron Core, an enterprise device solution that has since been rebranded to Ivanti Endpoint Manager Mobile (EPMM). “The vulnerability was… Continue reading Ivanti discloses another vulnerability in MobileIron Core (CVE-2023-35082)→

Ivanti Zero-Day Exploited by APT Since at Least April in Norwegian Government Attack

Posted on August 2, 2023 by Eduard Kovacs

The recently patched Ivanti EPMM zero-day CVE-2023-35078 has been exploited to hack the Norwegian government since at least April 2023.
The post Ivanti Zero-Day Exploited by APT Since at Least April in Norwegian Government Attack appeared first on Se… Continue reading Ivanti Zero-Day Exploited by APT Since at Least April in Norwegian Government Attack→

Ivanti fixes second zero-day exploited by attackers (CVE-2023-35081)

Posted on July 31, 2023 by Helga Labus

Another actively exploited zero-day vulnerability (CVE-2023-35081) affecting Ivanti Endpoint Manager Mobile (EPMM) has been identified and fixed. The first zero-day spotted Last week, we reported on a remote unauthenticated API access vulnerability (CV… Continue reading Ivanti fixes second zero-day exploited by attackers (CVE-2023-35081)→

Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks

Posted on July 31, 2023 by Eduard Kovacs

Ivanti EPMM customers have been warned of CVE-2023-35081, a second zero-day vulnerability that has been exploited in targeted attacks.
The post Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks appeared first on SecurityWeek.
Continue reading Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks→

Ivanti zero-day exploited to target Norwegian government (CVE-2023-35078)

Posted on July 25, 2023 by Zeljka Zorz

A zero-day vulnerability (CVE-2023-35078) affecting Ivanti Endpoint Manager Mobile (EPMM) has been exploited to carry out an attack that affected 12 Norwegian ministries, the Norwegian National Security Authority (NSM) has confirmed on Tuesday. What is… Continue reading Ivanti zero-day exploited to target Norwegian government (CVE-2023-35078)→

Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government

Posted on July 25, 2023 by Eduard Kovacs

An Ivanti EPMM product zero-day vulnerability tracked as CVE-2023-35078 has been exploited in an attack aimed at the Norwegian government.
The post Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government appeared first on SecurityWeek.
Continue reading Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government→

July 2023 Patch Tuesday forecast: A month of instability and uncertainty

Posted on July 7, 2023 by Help Net Security

We’re halfway through 2023 already and moving into our seventh Patch Tuesday of the year next week. There’s been a lot of activity with Microsoft this month which may impact updates we’ll see. But first taking a quick look back at June, we had a fairly… Continue reading July 2023 Patch Tuesday forecast: A month of instability and uncertainty→