August 6, 2024 at 09:42AM Hackers targeted UK-based Mobile Guardian, remotely wiping thousands of devices. The company detected unauthorized access on August 4 and shut down servers to contain the incident. Unauthorized access to iOS and Chrome OS devices was involved, but there is no evidence that attackers gained access to user data. Singapore’s Ministry … Read more
May 2, 2024 at 10:05AM The corporate IT landscape is shifting due to SaaS adoption and BYOD practices, providing flexible work options. However, integrating personal devices into corporate systems brings security challenges. Mobile device management and secure remote access are key solutions, along with implementing extra controls like antivirus protection and network access control to … Read more
April 17, 2024 at 08:48AM Ivanti, an IT software company, released version 6.4.3 to fix 27 vulnerabilities in its Avalanche MDM product. These include critical-severity bugs allowing remote command execution without authentication. The patches also address high-severity flaws, medium-severity issues, and denial-of-service vulnerabilities. Ivanti recommends all customers update their Avalanche installations promptly to avoid potential … Read more
April 16, 2024 at 03:57PM Ivanti released security updates to address 27 vulnerabilities in its Avalanche mobile device management (MDM) solution, including critical heap overflows enabling remote command execution. Additionally, 25 medium and high-severity bugs were patched, fixing issues such as denial-of-service attacks and remote code execution. Users are advised to update to the latest … Read more
January 4, 2024 at 04:46PM Ivanti resolved a critical remote code execution (RCE) vulnerability in its Endpoint Management software (EPM), impacting all supported versions. Attackers on internal networks can exploit the flaw without requiring privileges or user interaction. Ivanti has prevented public access to full details on the vulnerability, aiming to provide customers with time … Read more
December 21, 2023 at 07:33AM Ivanti has released Avalanche 6.4.2 to patch 20 vulnerabilities in its enterprise mobile device management product. The flaws, including critical ones, can be exploited for remote code execution and denial-of-service attacks. Customers are urged to install the patches promptly due to the potential targeting of Ivanti product vulnerabilities by threat … Read more
December 20, 2023 at 01:10PM Ivanti released security updates fixing 13 critical vulnerabilities in their Avalanche enterprise mobile device management (MDM) solution. The flaws relate to buffer overflows. Unauthenticated attackers could exploit them for remote code execution. All issues were resolved in Avalanche v6.4.2.313. CISA and NCSC-NO have expressed concern about potential widespread exploitation in … Read more
October 10, 2023 at 05:55PM Microsoft has issued a warning to customers about incorrect BitLocker drive encryption errors in certain managed Windows environments. The issue only affects client platforms like Windows 11 21H2/22H2 and Windows 10 21H2/22H2, as well as Windows 10 Enterprise LTSC 2019. It specifically impacts environments where drive encryption is enforced for … Read more