Ivanti released a new Ivanti Integrity Checker Tool as well as a security enhancement to augment the current protective measures while further enabling customers to quickly pinpoint unusual activity. For further information on the enhancements, please visit our quick start guide
KB44755.
We are aware of reports that a limited number of customers have identified unusual activity on their Pulse Connect Secure (PCS) appliances. The investigation to date shows ongoing attempts to exploit vulnerabilities outlined in two security advisories that were patched in 2019 and 2020 to address previously known issues: Security Advisory
SA44101 (CVE-2019-11510) and Security Advisory
SA44601 (CVE- 2020- 8260). For more information visit
KB44764 (Customer FAQ).
Ivanti recommends that customers deploy the latest version of Pulse Secure software (
9.1R11.1), which includes an active file structure monitoring of your appliance, and to include password update frequency in their corporate security policy. For more information on security best practices please visit
KB29805.
If you have questions in the meantime, we encourage you to contact the Pulse Secure Support center which is available 24/7: +1-844-751-7629 or engage your support representative
https://support.pulsesecure.net/support/support-contacts/.
