Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/shadowserver/statuses/111781817660837203">The Shadowserver Foundation (shadowserver@infosec.exchange)'s status on Friday, 19-Jan-2024 20:03:26 JST</a><a href="https://infosec.exchange/@shadowserver" title="shadowserver@infosec.exchange"><img src="https://gnusocial.jp/avatar/233023-48-20240119110326.webp" width="48" height="48" alt="The Shadowserver Foundation" style="position: absolute; left: 0; top: 0;">The Shadowserver Foundation</a><div><a href="https://infosec.exchange/@shadowserver/111770495114458199" rel="in-reply-to">in reply to</a></div></section><article><p>Lots of exploitation of Ivanti Connect Secure VPN CVE-2023-46805 &amp; CVE-2024-21887 seen by our sensors. Assume compromise on exposed endpoints if you have not applied the mitigation.  You can track Ivanti CVE exploitation attempts on our Dashboard: </p><p><a href="https://dashboard.shadowserver.org/statistics/honeypot/time-series/?date_range=7&amp;host_type=src&amp;vendor=ivanti&amp;group_by=vulnerability&amp;style=stacked" rel="nofollow noreferrer">https://dashboard.shadowserver.org/statistics/honeypot/time-series/?date_range=7&amp;host_type=src&amp;vendor=ivanti&amp;group_by=vulnerability&amp;style=stacked</a></p><p>Note you can track latest trends in CVE exploitation on our Dashboard at <a href="https://dashboard.shadowserver.org/statistics/honeypot/monitoring/vulnerability/?category=anomaly&amp;statistic=unique_ips&amp;limit=100" rel="nofollow noreferrer">https://dashboard.shadowserver.org/statistics/honeypot/monitoring/vulnerability/?category=anomaly&amp;statistic=unique_ips&amp;limit=100</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2607795#notice-5165342">In conversation</a><time datetime="2024-01-19T20:03:26+09:00" title="Friday, 19-Jan-2024 20:03:26 JST">about a year ago</time> <span>from <span><a href="https://infosec.exchange/@shadowserver/111781817660837203" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@shadowserver/111781817660837203">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/2135961">Untitled attachment</a></label><br><a href="https://media.infosec.exchange/infosec.exchange/media_attachments/files/111/781/816/945/490/830/original/d310d85dcaa147db.png" rel="external">https://media.infosec.exchange/infosec.exchange/media_attachments/files/111/781/816/945/490/830/original/d310d85dcaa147db.png</a></li><li><label><a rel="external" href="https://gnusocial.jp/attachment/2135962">Untitled attachment</a></label><br><a href="https://media.infosec.exchange/infosec.exchange/media_attachments/files/111/781/817/548/315/158/original/070a380a4e3f9ca6.png" rel="external">https://media.infosec.exchange/infosec.exchange/media_attachments/files/111/781/817/548/315/158/original/070a380a4e3f9ca6.png</a></li><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://dashboard.shadowserver.org/statistics/honeypot/time-series/?date_range=7&amp;host_type=src&amp;vendor=ivanti&amp;group_by=vulnerability&amp;style=stackedNote">Time series · Attack statistics · The Shadowserver Foundation</a></h5><div></div></header><div></div><footer></footer></article></li><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://dashboard.shadowserver.org/statistics/honeypot/monitoring/vulnerability/?category=anomaly&amp;statistic=unique_ips&amp;limit=100">Vulnerabilities · Attack statistics · The Shadowserver Foundation</a></h5><div></div></header><div></div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
The Shadowserver Foundation (shadowserver@infosec.exchange)'s status on Friday, 19-Jan-2024 20:03:26 JST The Shadowserver Foundation
in reply to
Lots of exploitation of Ivanti Connect Secure VPN CVE-2023-46805 & CVE-2024-21887 seen by our sensors. Assume compromise on exposed endpoints if you have not applied the mitigation. You can track Ivanti CVE exploitation attempts on our Dashboard:
https://dashboard.shadowserver.org/statistics/honeypot/time-series/?date_range=7&host_type=src&vendor=ivanti&group_by=vulnerability&style=stacked
Note you can track latest trends in CVE exploitation on our Dashboard at https://dashboard.shadowserver.org/statistics/honeypot/monitoring/vulnerability/?category=anomaly&statistic=unique_ips&limit=100
In conversationabout a year ago from infosec.exchangepermalink
Attachments
1. Untitled attachment
  https://media.infosec.exchange/infosec.exchange/media_attachments/files/111/781/816/945/490/830/original/d310d85dcaa147db.png
2. Untitled attachment
  https://media.infosec.exchange/infosec.exchange/media_attachments/files/111/781/817/548/315/158/original/070a380a4e3f9ca6.png
3. No result found on File_thumbnail lookup.
  Time series · Attack statistics · The Shadowserver Foundation
4. No result found on File_thumbnail lookup.
  Vulnerabilities · Attack statistics · The Shadowserver Foundation

Public

Embed Notice

HTML Code

Corresponding Notice