![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEinSBOI8l92bHwIfEdqAUIozFvGWie3JbkNX-3_PTimTqYVuL3JtnZLXwTAVXLnuQ4JwTVWr5nrgZpu3dcf4h7ckD7XA30IFC1u-KPwr9SMavE8ZVvNYEJSDUyEcBIotq_nAcezdlirAHKIAHYtrCHWpZ1gJvNZg6OE3-mJxzFO3ltd7-1RNWua2MYs2Z0X/s1600/hacker.png)
Multiple China-nexus threat actors have been linked to the zero-day exploitation of three security flaws impacting Ivanti appliances (CVE-2023-46805, CVE-2024-21887, and CVE-2024-21893).
The clusters are being tracked by Mandiant under the monikers UNC5221, UNC5266, UNC5291, UNC5325, UNC5330, and UNC5337. Another group linked to the exploitation spree is UNC3886.
The Google Cloud
Source:: The Hackers News