#pulsesecure — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #pulsesecure, aggregated by home.social.
-
How #PrivateEquity #Debt Left a Leading #VPN Open to Chinese Hackers
-
Global Organizations Targeted in Alleged Access Sale https://dailydarkweb.net/global-organizations-targeted-in-alleged-access-sale/ #UnauthorizedAccesses #CyberSecurity #networkaccess #PulseSecure #threatactor #databreach #government #darkweb #CISCO #RDP #VPN
-
Ivanti CEO Vows Cybersecurity Makeover After Zero-Day Blitz https://www.securityweek.com/ivanti-ceo-vows-cybersecurity-makeover-after-zero-day-blitz/ #Vulnerabilities #Nation-State #CVE202346805 #CVE202421887 #PulseSecure #Government #ZeroDay #Ivanti
-
Ivanti CEO Vows Cybersecurity Makeover After Zero-Day Blitz https://www.securityweek.com/ivanti-ceo-vows-cybersecurity-makeover-after-zero-day-blitz/ #Vulnerabilities #Nation-State #CVE202346805 #CVE202421887 #PulseSecure #Government #ZeroDay #Ivanti
-
We're still discovering further ramifications to #Ivanti's #PulseSecure vulnerabilities (#CVE_2023_46805 & #CVE_2024_21887). In February, we identified two new backdoors: #SparkCockpit & #SparkTar. Both backdoors employ selective interception of TLS communication, offer multiple degrees of persistence and access possibilities into the victim network (e.g., traffic tunneling through SOCKS proxy).
👀 Analysis & detection rules at https://blog.nviso.eu/2024/03/01/covert-tls-n-day-backdoors-sparkcockpit-sparktar/
The findings of our investigation have been independently corroborated by the research performed by Mandiant and have partially been observed by Fortinet.
-
True facts. AFAICT, the #Ivanti mess is technical-debt chickens coming home to roost. I was at #NetScreen when we acquired #Neoteris (originators of the #SSLVPN product), and then over the next two decades #Juniper > #PulseSecure > #Ivanti have tortured that legacy codebase with everything from FrankenNAC to PE-driven developer offshoring to bolt-on cloud-service offerings. TBH the only thing that surprises me about this is that it took so long.
Pouring one out for what was truly a revolutionary #VPN solution when it debuted 20-some years ago... -
True facts. AFAICT, the #Ivanti mess is technical-debt chickens coming home to roost. I was at #NetScreen when we acquired #Neoteris (originators of the #SSLVPN product), and then over the next two decades #Juniper > #PulseSecure > #Ivanti have tortured that legacy codebase with everything from FrankenNAC to PE-driven developer offshoring to bolt-on cloud-service offerings. TBH the only thing that surprises me about this is that it took so long.
Pouring one out for what was truly a revolutionary #VPN solution when it debuted 20-some years ago... -
True facts. AFAICT, the #Ivanti mess is technical-debt chickens coming home to roost. I was at #NetScreen when we acquired #Neoteris (originators of the #SSLVPN product), and then over the next two decades #Juniper > #PulseSecure > #Ivanti have tortured that legacy codebase with everything from FrankenNAC to PE-driven developer offshoring to bolt-on cloud-service offerings. TBH the only thing that surprises me about this is that it took so long.
Pouring one out for what was truly a revolutionary #VPN solution when it debuted 20-some years ago... -
True facts. AFAICT, the #Ivanti mess is technical-debt chickens coming home to roost. I was at #NetScreen when we acquired #Neoteris (originators of the #SSLVPN product), and then over the next two decades #Juniper > #PulseSecure > #Ivanti have tortured that legacy codebase with everything from FrankenNAC to PE-driven developer offshoring to bolt-on cloud-service offerings. TBH the only thing that surprises me about this is that it took so long.
Pouring one out for what was truly a revolutionary #VPN solution when it debuted 20-some years ago... -
True facts. AFAICT, the #Ivanti mess is technical-debt chickens coming home to roost. I was at #NetScreen when we acquired #Neoteris (originators of the #SSLVPN product), and then over the next two decades #Juniper > #PulseSecure > #Ivanti have tortured that legacy codebase with everything from FrankenNAC to PE-driven developer offshoring to bolt-on cloud-service offerings. TBH the only thing that surprises me about this is that it took so long.
Pouring one out for what was truly a revolutionary #VPN solution when it debuted 20-some years ago... -
Hackers are exploiting a Pulse Secure 0day to breach orgs around the world - Enlarge (credit: CHUYN / Getty Images)
Hackers backed by nation-states are expl... - https://arstechnica.com/?p=1758789 #vulnerabilities #pulsesecure #exploits #biz&it #policy #tech #vpns -
Mindestens zwei Gruppen attackieren Pulse Secure VPN-Appliances über eine bislang unbekannte Sicherheitslücke. Patches gibt es bislang keine. Kritische 0-Day-Lücke in Pulse Secure VPN aktiv ausgenutzt -
Zwei aktuelle Studien beleuchten die IT-Sicherheit in Unternehmen. Die Befragten sehen sich immer mehr Bedrohungen ausgesetzt und investieren kräftig.
Studie: Sicherheit ist Entscheidungsträgern zu komplex -
Code-execution bug in Pulse Secure VPN threatens patch laggards everywhere - Enlarge (credit: Bid.in2corporate.com)
Organizations that have yet to install the latest version ... - https://arstechnica.com/?p=1701334 #virtualprivatenetworks #vulnerabilities #codeexecution #pulsesecure #biz&it #tech #bugs #vpns -
As attacks begin, Citrix ships patch for VPN vulnerability - Enlarge (credit: Igor Golovniov/SOPA Images/LightRocket via Getty Images)
On January 19, Citrix r... more: https://arstechnica.com/?p=1645999 #pulsesecure #ransomware #biz&it #policy #citrix -
Unpatched Citrix vulnerability now exploited, patch weeks away - Enlarge / Citrix's ADC and Gateway products have a vulnerability that now has several exploits wide... more: https://arstechnica.com/?p=1643051 #virtualprivatenetworksvpns #pulsesecure #webhack #biz&it #citrix
-
Unpatched VPN makes Travelex latest victim of “REvil” ransomware - Enlarge / It may take longer to get your money changed when you travel, since Travelex is doing eve... more: https://arstechnica.com/?p=1640787 #pulsesecure #ransomware #biz&it #revil #vpn