Jump to content
Search In
  • More options...
Find results that contain...
Find results in...

Hackers are exploiting a Pulse Secure 0-day to breach orgs around the world

Quote

Hackers backed by nation-states are exploiting critical vulnerabilities in the Pulse Secure VPN to bypass two-factor authentication protections and gain stealthy access to networks belonging to a raft of organizations in the US Defense industry and elsewhere, researchers said.

At least one of the security flaws is a zero-day, meaning it was unknown to Pulse Secure developers and most of the research world when hackers began actively exploiting it, security firm Mandiant said in a blog post published Tuesday. Besides CVE-2021-22893, as the zero-day is tracked, multiple hacking groups—at least one of which likely works on behalf of the Chinese government—are also exploiting several Pulse Secure vulnerabilities fixed in 2019 and 2020...

...Used alone or in concert, the security flaws allow the hackers to bypass both single-factor and multifactor authentication protecting the VPN devices. From there, the hackers can install malware that persists across software upgrades and maintain access through webshells, which are browser-based interfaces that allow hackers to remotely control infected devices.

Source

This is pretty bad. Almost feels as bad as SolarWinds. The fact this bug allows bypassing of 2FA and be stealthy is scary stuff. So many business rely on VPNs to work. Hope a resolution is found quickly. 

Be sure to @Pickles - Lord of the Jar if you want me to see your reply!

Stopping by to praise the all mighty jar Lord pickles... * drinks from a chalice of holy pickle juice and tossed dill over shoulder* ~ @WarDance
3600x | NH-D15 Chromax Black | 32GB 3200MHz | ASUS KO RTX 3070 UnderVolted and UnderClocked | Gigabyte X570 Aorus Elite | Seasonic X760w | Phanteks Evolv X | 500GB WD_Black SN750 | Sandisk Skyhawk 3.84TB SSD | 4TB HDD 

Link to post
Share on other sites

I cringe every time I hear Pulse "secure" VPN exploits. Its particularly bad for marketing when your product name is literally "secure" yet these new 0days are found every year and most of them are critical.

mY s YsTeM iS Not pErfoRmInG aS gOOd As I sAW oN yOuTuBe. WhA t IS a GoOd FaN CuRVe??!!? wHat aRe tEh GoOd OvERclok SeTTinGS FoR My CaRd?? HoW CaN I foRcE my GpU to uSe 1o0%? BuT WiLL i HaVE Bo0tllEnEcKs? RyZEN dOeS NoT peRfORm BetTer wItH HiGhER sPEED RaM!!dId i WiN teH SiLiCON LotTerrYyOu ShoUlD dEsHrOuD uR GPUmy SYstEm iS UNDerPerforMiNg iN WarzONE.
 
 
Link to post
Share on other sites
5 minutes ago, Levent said:

I cringe every time I hear Pulse "secure" VPN exploits. Its particularly bad for marketing when your product name is literally "secure" yet these new 0days are found every year and most of them are critical.

Clearly no one at Pulse has a pulse. 

Link to post
Share on other sites

I would think VPN services would be safe enough.. But sure enough.. Either its private information or exploits 🙃

ASUS ROG STRIX B350-F Gaming | AMD Ryzen 3600 at 4GHz/1.2vMasterLiquid ML360R RGB | PNY Geforce RTX 2080 Super OC 8GB Gaming | Corsair Vengeance RGB 16GB DDR4 (2x 8GB) 3000 MHz | Fractal Design 750w Integra M | Intel 600p - 256 GB (M.2) | Samsung EVO 850 - 500 GB | Samsung EVO Pro 850 - 250 GB Fractal Design R6 Black (Silent) | 3x FractalDesign Dynamic X2 GW-14 & 3x CoolerMaster 120mm "RGB"

Display(s): Samsung Oddesy G7 240hz/1ms, ACER Predator XB271H A 144hz/1ms. (Yeah i sold the Philips 273ELH to a friend XD)

Car(s): Volvo V70 D3 2016

Link to post
Share on other sites

Figured something was up when our network engineers were sending out notifications to our technology department about an emergency patch they had to do on the VPN yesterday.

Link to post
Share on other sites

ZScaler is obviously the superior Enterprise VPN.

PLEASE QUOTE ME IF YOU ARE REPLYING TO ME

LinusWare Dev | NotCPUCores Dev

Desktop Build: Ryzen 7 1800X @ 4.0GHz, AsRock Fatal1ty X370 Professional Gaming, 32GB Corsair DDR4 @ 3000MHz, RX480 8GB OC, Benq XL2730 1440p 144Hz FS

Retro Build: Intel Pentium III @ 500 MHz, Dell Optiplex G1 Full AT Tower, 768MB SDRAM @ 133MHz, Integrated Graphics, Generic 1024x768 60Hz Monitor


 

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×