Two China-linked threat groups are still exploiting unpatched flaws in Ivanti’s Pulse Connect Secure VPN products, FireEye says. FireEye: Attackers using additional malware variants to support cyberespionage. Attackers are using four new malware families to infect Pulse Secure devices. The attacks were hitting a variety of government and private-sector organizations worldwide, says FireEye’s Mandiant Threat Intelligence team. CISA issued an updated tool to help users check if they have been targeted, says CISAs deputy executive assistant director for cybersecurity.”]
Source: https://www.careersinfosecurity.com/pulse-connect-secure-vpns-still-under-attack-a-16766