Threat actors are exploiting vulnerabilities in the Ivanti Endpoint Manager Mobile device management system, according to a cybersecurity advisory from the Cybersecurity and Infrastructure Security Agency.
Details: Issued in coordination with the Norwegian National Cyber Security Centre, the advisory says the vulnerability allows threat actors to access personally identifiable information, make configuration changes, and write arbitrary files on compromised systems. The agencies are concerned about the potential for widespread exploitation in government and private-sector networks.
More: Additional community bank security resources are available to ICBA members on ICBA’s Cyber and Data Security resource center.