We have known for a long time that VPNs pose a serious security risk for two reasons:
1. They have lots of vulnerabilities
2. They put users on the network enabling lateral threat movement which is exploited by ransomware as well as nation state threat actors
Ivanti, formerly known as Pulse Secure VPN, was recently exploited by hackers. This exploit was so bad that CISA (US Cybersecurity Agency) had to issue an emergency directive. A Supplemental Directive was later issued as threat actors had compromised VPN systems and the patches applied did not help.
The directive states that Federal Agencies must now disconnect all instances of Ivanti Connect Secure and Ivanti Policy Secure solution products from agency networks no later than 11:59 PM on Friday February 2, 2024.
This threat is not restricted to just Federal Agencies and all Ivanti customers should act immediately. Not only should the VPN products be removed, customers should perform deep network searches to find any traces of compromise, beacons and backdoors from the window of exposure from when the vulnerabilities might have been exploited prior to final remediation efforts. To learn more, we encourage you to read this blog published by the Zscaler ThreatLabz Team: https://lnkd.in/g3N9sYgw
A true zero trust platform, like Zscaler Private Access, removes the threat of zero day vulnerabilities that have plagued Ivanti, as well as all other legacy VPN solutions, by removing all remote access entry points. True Zero Trust means no exposed devices or IP addresses to attack, because authorization happens before an inside out connection is ever made.
Zscaler is standing by to help any customer who is ready to deploy a Zero Trust Architecture. We can deploy in just 24 hours. To help speed the process, we are offering 60 days free of charge including full deployment assistance. For any questions, or to get started right away, please contact my team at replaceVPN@zscaler.com
Software Sales Engineer
2wCrack, if possible record the session and share. Your knowledge is always appreciated