Cyber Threat Report: 'Ivanti Connect Secure: Journey to the core of the DSLog backdoor'
| Report Author | Orange Cyberdefense |
|---|---|
| Publication Date | 2024-02-09 |
| Original Reporting | Source |
| Identified CVEs | CVE-2024-21887 , CVE-2024-21888 , CVE-2024-21893 , CVE-2023-46805 |
The CERT at Orange report on the exploitation of multiple vulnerabilities in Ivanti products. Following successful exploitation, the attackers installed the DSLog backdoor. The report provides technical details of the attack including indicators of compromise (IoCs) as well as a discovery timeline and recommendations for protecting against attack.
Cyber Threat Graph Context
Explore how this report relates to the wider threat graph