![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgvBMGRX-FRhy6CYsKZLAVAI-R4Vq-OHFhUpTO_Ky7GF6UcUGzv6Kh0jYNdC5kTLbexZbAJ5ePXVe8uxpWGu0GVnHjUIKIJnONT-dn6y7dSF_2aQonNdE0ZqL9S-u1McXUreNtn-zlj4B6ssalzlcEsOZ-fB-aGbVYsuor2yZxvsD6GAlahvlQ7RT7oyJ0C/s1600/china.jpg)
At least two different suspected China-linked cyber espionage clusters, tracked as UNC5325 and UNC3886, have been attributed to the exploitation of security flaws in Ivanti Connect Secure VPN appliances.
UNC5325 abused CVE-2024-21893 to deliver a wide range of new malware called LITTLELAMB.WOOLTEA, PITSTOP, PITDOG, PITJET, and PITHOOK, as well as maintain persistent
Source:: The Hackers News