cognitive cybersecurity intelligence

News and Analysis


Hackers Created Rogue VMs to Evade Detection in Recent MITRE Cyber Attack

The MITRE Corporation was a victim of a cyber attack in late December 2023. It exploited zero-day flaws in Ivanti Connect Secure and created rogue virtual machines (VMs) within the VMware environment. This maneuver enabled them to avoid detection while maintaining persistent access. The attackers also deployed a web shell to launch a Python-based tunneling tool. Effective countermeasures suggested include enabling secure boot and using certain scripts to identify potential threats.

Source: –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

More Posts