Three zero-day flaws in Ivanti CSA solutions were abused to grab login credentials The group likely sold the access to French government devices Researchers are attributing the attacks to Chinese state-sponsored miscreants In late 2024, Chinese state-sponsored threat actors abused multiple zero-day vulnerabilities in Ivanti Cloud Services Appliance (CSA) devices to access French government agencies, as well as numerous commercial entities such as telcos, finance, and transportation organizations. The news was recently confirmed by the French National Agency for the Security of Information Systems (ANSSI), which noted threat actors were abusing three security vulnerabilities in Ivanti CSA devices: CVE-2024-8963, CVE-2024-9380,…
News Timeline:
Track the development of related news across the Internet.
November 22, 2025
05:05
Source: arstechnica.com
November 6, 2025
18:02
Source: manilatimes.net
November 4, 2025
00:09
Source: ChinaRetailNews.com
November 2, 2025
20:52
Source: ChinaRetailNews.com
October 9, 2025
18:18
Source: ChinaRetailNews.com
August 1, 2025
21:29
Source: plymouthherald.co.uk
July 18, 2025
02:33
Source: techradar.com
May 10, 2025
18:14
Source: cp24.com
May 5, 2025
21:19
Source: techradar.com