Ivanti patches another EPMM zero-day used to attack Norwegian government

Patch now, urges CISA

clock • 3 min read
Ivanti patches another EPMM zero-day used to attack Norwegian government
Image:

Ivanti patches another EPMM zero-day used to attack Norwegian government

Mobile security vendor Ivanti has fixed another zero-day vulnerability in the Endpoint Manager Mobile (EPMM) software that was exploited alongside another zero-day fault to infiltrate the IT systems of a dozen ministries in Norway.

Ivanti's EPMM was previously known as MobileIron Core. The newly discovered zero-day, identified as CVE-2023-35081 and with a CVSS score of 7.8, affects several supported versions, namely 11.10,...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
CISA confirms Windows privilege escalation flaw has been exploited

Threats and Risks

US cybersecurity agency also added a recently disclosed Google Pixel flaw to its list of exploited vulnerabilities

clock 17 June 2024 • 1 min read
CISA identifies GitLab vulnerability under exploit

Threats and Risks

Hope you have two-factor

clock 03 May 2024 • 2 min read
Mandiant's 2024 threat report - five takeaways

Threats and Risks

Latest M-Trends report details how ransomware, zero-day attacks and other threats evolved last year.

clock 24 April 2024 • 5 min read

More on Threats and Risks

Surge in global ransomware attacks as LockBit returns

Surge in global ransomware attacks as LockBit returns

LockBit 3.0 resurfaces as leading threat actor

Vikki Davies
clock 21 June 2024 • 2 min read
Gang leaks NHS patient data on the dark web - updated

Gang leaks NHS patient data on the dark web - updated

400GB of names, NHS numbers and blood test details spilled by Qilin

John Leonard
clock 21 June 2024 • 2 min read
Biden administration bans Kaspersky software over security concerns

Biden administration bans Kaspersky software over security concerns

Commerce secretary Gina Raimondo highlighted threats to critical infrastructure, while Kaspersky plans legal action.

Vikki Davies
clock 21 June 2024 • 3 min read