Chinese Cyberspies Use New Malware in Ivanti VPN Attacks
February 28, 2024 at 07:45AM Mandiant reports that Chinese threat actors have exploited recent Ivanti Connect Secure VPN vulnerabilities, deploying new malware for persistence. Despite patches, attackers continued exploiting a vulnerability, deploying new malware families and demonstrating a nuanced understanding of the appliance to persistently execute backdoors. The threat actor, UNC5325, has been observed exploiting … Read more