Ivanti products targeted by dangerous malware yet again
techradar.com
- CISA is warning of new malware targeting vulnerable Ivanti products
- Multiple products, vulnerable to a 2024 flaw, are being targeted
- The malware can create web shells, harvest credentials, and more
Multiple Ivanti products are being targeted by a piece of malware called RESURGE, a new security advisory published by the US Cybersecurity and Infrastructure Security Agency (CISA) has said, detailing both the malware and the vulnerability being exploited to deploy it.
Resurge is a variant of SPAWNCHIMERA, a piece of malware targeting Ivanti Connect Secure appliances, enabling unauthorized access and persistent control over vulnerable endpoints.
While RESURGE can also survive reboots, the malware can also create web shells, manipulate integrity checks, modify files, and use the web shells to harvest credentials, create accounts, reset passwords, and escalate permissions.
Monitor your credit score with TransUnion starting at $29.95/month
TransUnion is a credit monitoring service that ...
Copyright of this story solely belongs to techradar.com . To see the full text click HERE