Zero-Day Attack Hits Cybersecurity Leader

MITRE Corporation, a cybersecurity research organization, was one of over 1700 groups hit by a state-sponsored hack in January 2024. The breach stemmed from two zero-day vulnerabilities in the Ivanti VPN, enabling hackers to bypass multi-factor authentication and commandeer admin accounts. The attack led MITRE to take its Networked Experimentation, Research, and Virtualization Environment offline and commence an investigation.