Once a user's device is infected as part of an ongoing Flax Typhoon APT campaign, the malware connects it to a botnet called Raptor Train, initiating malicious activity.
Three days after Ivanti published an advisory about the high-severity vulnerability CVE-2024-8190, threat actors began to abuse the flaw.
UnDisruptable27 connects technology firms with the public sector to strengthen the nation’s cyber defenses in case of attacks on critical infrastructure.