Dark Reading

Nearly 4,500 Pulse Connect Secure VPNs Left Unpatched and Vulnerable

Nearly 4,500 Pulse Connect Security SSL virtual private network hosts are running unpatched server software, leaving them open to cyberattacks. A new analysis from Censys of the Pulse Connect Secure ...
Homeland Security Today

Continued Threat Actor Exploitation Post Pulse Secure VPN Patching

This Alert provides an update to Cybersecurity and Infrastructure Security Agency (CISA) Alert AA20-010A: Continued Exploitation of Pulse Secure VPN Vulnerability, which advised organizations to ...
CRN

Ivanti Discloses Fifth Major VPN Vulnerability In A Month

The disclosure of the new high-severity Connect Secure bug comes as three recently discovered Ivanti VPN vulnerabilities are now under mass exploitation. Ivanti published details Thursday on a new, ...
CRN

Ivanti Reports Exploitation Of Two Zero-Day VPN Flaws

The high-severity vulnerabilities impact Ivanti’s Connect Secure VPN and do not yet have a patch available. Ivanti disclosed Wednesday that a pair of high-severity, zero-day vulnerabilities impacting ...
WRAL

Suspected Chinese hackers exploited Pulse Secure VPN to compromise 'dozens' of agencies and companies in US and Europe

In a blog post, Pulse Secure said the newly discovered flaw affects a "very limited number of customers" and that a more permanent software update to address that vulnerability will be issued in early ...
WRAL

Five federal agencies potentially breached in Pulse Connect Secure hack

At least five federal civilian agencies appear to have been breached in the latest hack to hit the US government, a discovery that follows emergency measures to mitigate potential damage from the ...
Dark Reading

APTs, Teleworking, and Advanced VPN Exploits: The Perfect Storm

Virtual private networks (VPNs), which have become essential for many organizations that provide remote employees with access to private networks since the pandemic's onset, are a popular target for ...
Business Insider

Trusona introduces passwordless 2FA integration for Pulse Connect Secure VPN

SCOTTSDALE, Ariz., Jan. 23, 2019 /PRNewswire/ -- Trusona, the global leader in passwordless authentication, announced today a passwordless 2FA integration for Pulse Connect Secure, a leading mobile ...
Business Insider

Pulse Secure Recognized as a Technology Leader in the Network Access Control (NAC) MarketPulse Policy Secure (NAC) visibility, enforcement and automation highlighted in recent ...

SAN JOSE, Calif., April 05, 2018 (GLOBE NEWSWIRE) -- Pulse Secure, the leading provider of secure access solutions to both enterprises and service providers, has been recognized as a technology leader ...
SDxCentral

Homeland Security Uncovers VPN Flaw in Cisco, F5, Palo Alto Networks, Pulse Secure

The National Cybersecurity and Communications Integration Center (NCCIC), the Department of Homeland Security’s cybersecurity division, published an alert on Friday highlighting a flaw found in a ...
Ars Technica

Code-execution bug in Pulse Secure VPN threatens patch laggards everywhere

If you haven't updated Pulse Secure VPN, now would be an excellent time to do so. Do real admins actually do this: "[click] on a malicious link embedded in an email or other type of message"? I am an ...
Bleeping Computer

NSA, CISA share VPN security tips to defend against hackers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have released guidance for hardening the security of virtual private network (VPN) solutions.