Ivanti has released a patch for the zero-day vulnerability, which affects a tool used to set policies for mobile devices and applications. Newsletter Sign-up WSJ Pro Cybersecurity Cybersecurity news, analysis and insights from WSJ’s global team of reporters and editors. The main concern at present is the initial compromise of victims and the potential vulnerability of Norwegian infrastructure, states Nystrøm. If organizations are unable to patch the Ivanti flaw, the Norwegian security agency advises taking the software offline. Details of the ongoing investigation into the Ivanti cyberattacks by Norwegian law enforcement authorities have not been disclosed publicly.

Source: Wall Street Journal July 26, 2023 02:55 UTC