In a recent cybersecurity incident, Chinese hackers reportedly infiltrated the network of an Ivanti subsidiary through vulnerabilities in its VPN software, potentially compromising the data of multiple organizations. The breach, which dates back to February 2021, involved exploiting a backdoor in Pulse Secure’s VPN product, as detailed by Bloomberg. This backdoor granted unauthorized access to 119 other entities utilizing the same VPN solution.
According to sources, Mandiant, a prominent cybersecurity firm, was aware of the breaches and alerted Ivanti about the exploitation of the software bug, affecting various European and U.S. military contractors. The incident underscores the critical importance of robust cybersecurity measures, especially in a landscape where malicious actors continuously target vulnerabilities in popular software.
Furthermore, the report highlighted the impact of organizational changes following private equity acquisitions on cybersecurity practices. Ivanti’s acquisition by Clearlake Capital Group in 2017 led to cost-cutting measures, including layoffs that may have impacted the security posture of its technologies. Similar challenges were observed in the cybersecurity realm with Citrix, following acquisitions by investment firms Elliott Management and Vista Equity Partners.
As cybersecurity threats continue to evolve, organizations must prioritize proactive security measures, regular software updates, and comprehensive risk assessments to safeguard against potential breaches.
Source: TechCrunch