Pulse Secure says it has fixed VPN issue that saw major targets hacked

Security firm Ivanti says it has fixed a zero-day vulnerability in its Pulse Connect Secure (PCS) VPN appliance that was being actively exploited to compromise the internal networks of defense firms and government agencies.

A recent investigation carried out by the Cybersecurity and Infrastructure Security Agency (CISA) revealed that a zero-day vulnerability in PCS could have allowed cybercriminals to breach at least five US federal agencies. 

Source link