Three zero-day flaws in Ivanti CSA solutions were abused to grab login credentials The group likely sold the access to French government devices Researchers are attributing the attacks to Chinese state-sponsored miscreants In late 2024, Chinese state-sponsored threat actors abused multiple zero-day vulnerabilities in Ivanti Cloud Services Appliance (CSA) devices to access French government agencies, as well as numerous commercial entities such as telcos, finance, and transportation organizations. The news was recently confirmed by the French National Agency for the Security of Information Systems (ANSSI), which noted threat actors were abusing three security vulnerabilities in Ivanti CSA devices: CVE-2024-8963, CVE-2024-9380,…
News Timeline:
Track the development of related news across the Internet.
August 1, 2025
21:29
Source: plymouthherald.co.uk
July 19, 2025
00:09
Source: techradar.com
July 18, 2025
02:33
Source: techradar.com
June 10, 2025
22:00
Source: techradar.com
May 5, 2025
21:19
Source: techradar.com
March 27, 2025
21:18
Source: techradar.com
March 25, 2025
19:56
Source: theguardian.com
March 10, 2025
23:02
Source: techradar.com
March 10, 2025
21:05
Source: techradar.com
February 13, 2025
21:50
Source: techradar.com