Get Permission
A new zero-day vulnerability in Ivanti s Pulse Connect Secure products is being combined with recently patched flaws to attack U.S. federal agencies.
The U.S. Cybersecurity and Infrastructure Security Agency, Ivanti and FireEye report that U.S. federal agencies and other entities have been compromised by two attack groups. Their primary goals are maintaining long-term access to networks, collecting credentials, and stealing proprietary data, says Charles Carmakal, senior vice president and CTO with FireEye Mandiant. We believe that multiple cyberespionage groups are using these exploits and tools, and there are some similarities between portions of this activity and a Chinese actor we call APT5.