Multiple agencies breached by hackers using Pulse Secure vulnerabilities

© Greg Nash
Federal authorities announced Tuesday that hackers breached multiple government agencies and other critical organizations by exploiting vulnerabilities in products from a Utah-based software company.
“CISA is aware of compromises affecting U.S. government agencies, critical infrastructure entities, and other private sector organizations by a cyber threat actor—or actors—beginning in June 2020 or earlier related vulnerabilities in certain Ivanti Pulse Connect Secure products,” the Cybersecurity and Infrastructure Security Agency (CISA) said in an alert.
The agency, which is the Department of Homeland Security’s cybersecurity arm, noted that it had been assisting compromised organizations since March 31, and that the hackers used vulnerabilities to place webshells in the Pulse Connect Secure products, which allowed them to bypass passwords, multi-factor authentication, and other security features. 

Related Keywords

China ,Russia ,Utah ,United States ,Chinese ,Russian ,Phil Richards ,Department Of Homeland Security ,Infrastructure Security Agency ,Us Defense Industrial ,Exchange Server ,Fireeye Mandiant Solutions ,Microsoft ,Ivanti Pulse Connect Secure ,Homeland Security ,Pulse Connect Secure ,Mandiant Solutions ,Industrial Base ,Hill Tuesday ,Security Officer Phil Richards ,சீனா ,ரஷ்யா ,உட்டா ,ஒன்றுபட்டது மாநிலங்களில் ,சீன ,ரஷ்ய ,பில் ரிச்சர்ட்ஸ் ,துறை ஆஃப் தாயகம் பாதுகாப்பு ,எங்களுக்கு பாதுகாப்பு தொழில்துறை ,பரிமாற்றம் சேவையகம் ,மைக்ரோசாஃப்ட் ,தாயகம் பாதுகாப்பு ,துடிப்பு இணைக்கவும் பாதுகாப்பானது ,தொழில்துறை அடித்தளம் ,மலை செவ்வாய் ,