Critical infrastructure implications of the Pulse Secure multi-factor authentication bypass

The FireEye Mandiant team has discovered multiple threat actors exploiting a zero-day vulnerability in Pulse Secure VPN appliances. The attack infrastructure is very sophisticated. The attacks persist in the VPN appliances, even across software updates, they change read-only filesystems to read-write filesystems and use a variety of mechanisms to evade detection. A variety of attack tools by a variety of threat actors are involved in exploiting the Pulse Secure systems, including four variants of a … More →
The post Critical infrastructure implications of the Pulse Secure multi-factor authentication bypass appeared first on Help Net Security.Expert analysis – Help Net SecurityRead More