Hackers have been using two zero-day vulnerabilities in Ivanti Connect Secure’s systems for espionage since December. The breaches, dubbed CVE-2023-46805 and CVE-2024-21887, allow authentication bypassing and arbitrary command injection on the affected systems. The threat actor behind these attacks, known as UNC5221, employs tools that plant malware, steal credentials, and drop payloads. Although there’s no security update available yet for the vulnerabilities, Ivanti offers mitigation measures.
T-Mobile pays $16 million fine for three years’ worth of data breaches
T-Mobile has agreed to pay a $15.75 million fine and improve its security in a settlement over a series of data breaches over three years