Mass Exploiting Ivanti VPN Zero-Days
Вставка
- Опубліковано 6 вер 2024
- In this video, Carlos warns about the risk of mass exploitation from the Ivanti zero-day flaws, discusses the ongoing zero-day trends we've been seeing in the last year, and highlights the urgency of logging and identifying gaps in log collection. At TrustedSec, our services and experts are ready to help you identify and address these gaps.
References:
(www.volexity.c...)
[(forums.ivanti....)
(www.mandiant.c...)
(techcrunch.com...)
(confluence.atl...)
Great video on the Ivanti exploit and the importance of baselining.
The issue of mass exploiting Ivanti VPN zero-days can be resolved by applying mitigation measures provided by the vendor on all ICS VPNs on the network, running Ivanti's Integrity Checker Tool, and considering all data on the ICS VPN appliance as compromised if signs of a breach are found. Additionally, admins should follow the mitigation guidance provided by Ivanti, apply patches as soon as they are released, and stay updated on security advisories to protect against further exploitation.
which network tool good for baselining ?