MITRE ATT&CKED: InfoSec’s Most Trusted Name Falls to Ivanti Bugs
April 22, 2024 at 03:21PM Chinese state hackers exploited vulnerable Ivanti edge devices to gain long-term access to MITRE Corp.’s unclassified NERVE network. The attackers used various techniques including exploiting VPNs and zero-day vulnerabilities, bypassing MFA, deploying web shells, and exfiltrating data. MITRE only detected the breach three months later, illustrating the serious impact and … Read more