Attackers have been exploiting several old and one zero-day vulnerability (CVE-2021-22893) affecting Pulse Connect Secure (PCS) VPN devices to breach a variety of defense, government, and financial organizations, Mandiant/FireEye has warned on Tuesday. The company has offered some workarounds that can mitigate the risk of exploitation of that particular vulnerability, as well as a tool that can help defenders check if their systems have been affected. The vulnerability affects Pulse Secure 9.0R3 and higher.
Source: https://www.helpnetsecurity.com/2021/04/21/cve-2021-22893/