Ars Technica

As if 2 Ivanti vulnerabilities under exploit weren’t bad enough, now there are 3

Mass exploitation began over the weekend for yet another critical vulnerability in widely used VPN software sold by Ivanti, as hackers already targeting two previous vulnerabilities diversified, ...
Hackaday

This Week In Security: Glibc, Ivanti, Jenkins, And Runc

There’s a fun buffer overflow problem in the Glibc __vsyslog_internal() function. This one’s a real rollercoaster, because logging vulnerabilities are always scary, but at a first look, it seems ...
VentureBeat

How Ivanti hopes to redefine cybersecurity with AI

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Widening gaps in cybersecurity tech stacks ...
Hosted on MSN

Ivanti patches two zero-days under active attack as intel agency warns customers

Australia's intelligence agency is warning organizations about several new Ivanti zero-days chained for remote code execution (RCE) attacks. The vendor itself has said the vulns are linked to two ...
Hosted on MSN

Ivanti's ratings under watch due to liquidity concerns, says Fitch

Investing.com -- Fitch Ratings has placed all ratings for Ivanti Software (ETR:SOWGn), Inc. and Icon (NASDAQ:ICLR) Software, Inc. on Rating Watch Negative (RWN). This includes the 'B' Long-Term Issuer ...
Dark Reading

Ivanti Keeps Security Teams Scrambling With 2 More Vulns

Ivanti, whose products have been a big target for attackers recently, has disclosed two more critical vulnerabilities in its technologies — raising more questions about the security of its products in ...
Bleeping Computer

Ivanti fixes EPMM zero-days chained in code execution attacks

Ivanti warned customers today to patch their Ivanti Endpoint Manager Mobile (EPMM) software against two security vulnerabilities chained in attacks to gain remote code execution. "Ivanti has released ...
Ars Technica

Ivanti CEO pledges to “fundamentally transform” its hard-hit security model

Ivanti, the remote-access company whose remote-access products have been battered by severe exploits in recent months, has pledged a “new era,” one that “fundamentally transforms the Ivanti security ...
Bleeping Computer

Ivanti warns of three more CSA zero-days exploited in attacks

American IT software company Ivanti has released security updates to fix three new Cloud Services Appliance (CSA) zero-days tagged as actively exploited in attacks. As Ivanti revealed on Tuesday, ...
Business Wire

Ivanti Names Software Industry Leader Dennis Kozak as CEO

SALT LAKE CITY--(BUSINESS WIRE)--Ivanti, the software company that breaks down barriers between IT and security so that Everywhere Work can thrive, announced today that it has named current Ivanti COO ...
CRN

CISA: Attackers Are Bypassing Ivanti VPN Bug Mitigations

As Ivanti Connect Secure customers await delayed patches, threat actors have ‘developed workarounds to current mitigations,’ the U.S. cybersecurity agency says. Malicious actors have “recently” ...
Infosecurity-magazine.com

New Fortinet and Ivanti Zero Days Exploited in the Wild

Fortinet and Ivanti have warned customers that attackers are exploiting new zero day vulnerabilities affecting a range of products. The tech firms published separate advisories on the flaws, one of ...