Chinese hackers are believed to be exploiting a zero-day flaw in Ivanti VPN devices, according to Mandiant researchers. The malware campaign was initially disclosed by Google’s Mandiant security division and includes the SPAWNANT installer, SPAWNMOLE tunneller, and SPAWNSNAIL SSH backdoor. Mandiant expects the cyber espionage, conducted by UNC5337 and UNC5221, to continue across numerous countries and sectors.
Ankura Cyber Threat Investigations FLASH Wrap-Up [Report]: December 2024 – Security
Ankura Consulting Group is a global expert services and advisory company that offers solutions for clients regarding conflict, crisis, performance, risk, strategy, and transformation. It
