Industry Intelligence

Filters

Showing 19–24 of 96 results

CVE-2024-21893: Another Ivanti Vulnerability Exploited in the Wild. Verify with NodeZero Today!

February 5, 2024 | Blogs

On 22 January, Ivanti published an advisory stating that they discovered two new, high-severity vulnerabilities (CVE-2024-21888 and CVE-2024-21893) after researching previously reported vulnerabilities affecting Ivanti Connect Secure, Ivanti Policy Secure and ZTA gateways. Ivanti provides enterprise solutions, including patch management and IT security solutions to over 40,000 customers worldwide. While there is no evidence of any customers being impacted by...

Six fishing poles mounted to the back of a motorized boat

Gone Phishing: How an Intern’s Credentials can be a Gateway to Your Crown Jewels

February 5, 2024 | Blogs

“Who cares that the intern was phished during our phishing campaign? It’s an intern, they don't have access to anything important."

CVE-2024-23897: Check Critical Jenkins Arbitrary File Leak Vulnerability Now!

January 30, 2024 | Blogs

On 24 January 2024, the Jenkins team issued a security advisory disclosing a critical vulnerability that affects the Jenkins CI/CD tool. Jenkins is a Java-based open-source automation server run by over 1 million users that helps developers build, test and deploy applications, enabling continuous integration and continuous delivery. The critical vulnerability is tracked as CVE-2024-23897 and affects Jenkins 2.441 and...