Un patch urgent pour Pulse Connect Secure - Le Monde Informatique lemondeinformatique.fr - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from lemondeinformatique.fr Daily Mail and Mail on Sunday newspapers.
Reseller News
Join Reseller News
Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.Sign up now
Businesses need to patch Pulse Secure VPNs
Vulnerabilities in Pulse Connect Secure VPN software have reportedly been exploited by attackers, some believed linked to China, to compromise networks. Credit: Dreamstime
Organisations using Pulse Secure’s mobile VPN should patch vulnerabilities reportedly being exploited in the wild, possibly by a “Chinese espionage actor”.
The patch - available here - is considered important enough that the Cybersecurity and Infrastructure Security Agency (CISA) gave federal agencies a deadline of April 23 to apply them. CISA’s guidance states that federal users of Pulse Connect Secure VPNs must use the company’s free utility to ascertain whether their devices are vulnerable.
Businesses need to patch Pulse Secure VPNs arnnet.com.au - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from arnnet.com.au Daily Mail and Mail on Sunday newspapers.
Undefined Undefined / Getty Images
Organizations using Pulse Secure’s mobile VPN should patch vulnerabilities reportedly being exploited in the wild, possibly by a “Chinese espionage actor”.
The patch–available here–is considered important enough that the Cybersecurity and Infrastructure Security Agency (CISA) gave federal agencies a deadline of April 23 to apply them.
CISA’s guidance states that federal users of Pulse Connect Secure VPNs must use the company’s free utility to ascertain whether their devices are vulnerable.
If the vulnerability is found, affected government Pulse Secure software and appliances have to be immediately isolated from the network and a full report has to be made. In addition to the vulnerability detection tool, Pulse Secure has issued a replacement XML configuration file, which prevents the exploits from functioning when placed on affected devices.
Kritische 0-Day-Lücke in Pulse Secure VPN aktiv ausgenutzt heise.de - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from heise.de Daily Mail and Mail on Sunday newspapers.