State of Cybercrime podcast

Ivanti Zero-Days

0:00
22:25
Rewind 15 seconds
Fast Forward 15 seconds

CISA issued an emergency directive to mitigate Ivanti Connect Secure and Ivanti Policy Secure vulnerabilities after learning of malware targeting the software company, allowing unauthenticated threat actors to access Ivanti VPNs and steal sensitive data. 

CISA is requiring all federal agencies to disconnect from affected Ivanti products by EOD February 2, 2024. The directive also warned that attackers had bypassed workarounds for current resolutions and detection methods. 

Join Matt, David, and Dvir to learn more about the Ivanti vuln and other cyber threats. 

OTHER BREAKING STORIES WE'LL COVER: 

• The latest ChatGPT news 

• Deepfakes… err breachfakes 

• Cloudflare's breach by suspected nation-state attacker 

• "Frog4Shell" spreading malware inside your network 

And more! 

 

More from Varonis ⬇️ Visit our website: https://www.varonis.com LinkedIn: https://www.linkedin.com/company/varonis X/Twitter: https://twitter.com/varonis Instagram: https://www.instagram.com/varonislife/

More episodes from "State of Cybercrime"