Always a trip when cybersec companies get breached.
The MITRE Corporation says that a state-backed hacking group breached its systems in January 2024 by chaining two Ivanti VPN zero-days.
Volexity said the Chinese hackers backdoored over 2,100 Ivanti appliances, harvesting and stealing account and session data from breached networks. The victims ranged in size from small businesses to some of the largest organizations worldwide, including Fortune 500 companies from various industry verticals.
Due to their mass exploitation and the vast attack surface, CISA issued this year’s first emergency directive on January 19, ordering federal agencies to mitigate the Ivanti zero-days immediately.