Spy groups hack into companies using zero-day flaw in Pulse Secure VPN

Several cyberespionage groups have been breaking into networks of organizations from the U.S. and Europe by exploiting vulnerabilities in VPN appliances from zero-trust access provider Pulse Secure. The flaw allows attackers to bypass authentication on the Pulse Connect Secure (PCS) VPN solution and execute arbitrary code. The vulnerability is rated critical with a severity score of 10 on the CVSS scale. A patch for the issue will be included in version 9.1R.11.4 of the PCS server.”]

Source: https://www.csoonline.com/article/3615283/spy-groups-hack-into-companies-using-zero-day-flaw-in-pulse-secure-vpn.html

Something Fresh

Zip Codes & PII: Are They Personal Data?

ZeroNet: 51% Attack Risks & Mitigation

Zero Knowledge Voting with Trusted Server

What People Reading

YubiKey Security: Initial Setup with Yubi Cloud

Zero-Day Vulnerabilities: User Defence Guide

Feedback and data-driven updates to Googles disclosure policy

ZAP: Brute Force Passwords

Security Insider Interview Series: John McArthur, Senior Product Manager, IP Intelligence; and Rupert Young, Senior Director Software Engineering, Data Compilation and Identity, Neustar

Categories

Partners

Just add here your partners image or promo text