Hackers Target Ivanti Cloud Appliances Despite Recent Security Patches

January 27, 2025Source: BleepingComputer

Found this useful? Share it with your network

CISA and the FBI have alerted organizations that hackers are actively exploiting security vulnerabilities in Ivanti Cloud Service Appliances, despite the release of patches in September and October 2024 for several critical issues, including an admin authentication bypass and remote code execution flaws. These vulnerabilities, now listed in CISA's Known Exploited Vulnerabilities Catalog, have been used in zero-day attacks to gain access, execute remote code, and establish webshells in victim networks. Federal agencies are directed to secure their Ivanti appliances under Binding Operational Directive 22-01, and both agencies strongly advise network administrators to upgrade their systems to mitigate ongoing risks.

Read Full Article

Opens on BleepingComputer

More News

AMA Asking For Stronger Safeguards on AI Mental Health Chatbots

April 29, 2026MobiHealthNews

Andrea Daugherty Appointed Chief Information and Digital Transformation Officer at ARMC

April 24, 2026arrowheadregional.org

Craig Richardville Appointed Chief Digital and Information Officer at UF Health

April 13, 2026ufhealth.org

Former AMA Exec Margaret Lozovatsky Named CDIO At Premier Health

April 10, 2026premierhealth.com

Signature Healthcare Diverts Ambulances Following Cybersecurity Incident

April 8, 2026SecurityWeek

More Than 100 Hospitals Suing HHS Over Alleged Underpayment

April 6, 2026MedCity News