Chinese Houken Hackers Exploiting Ivanti CSA Zero-Days to Deploy Linux Rootkits

July 2, 2025

Chinese Houken Hackers Exploiting Ivanti CSA Zero-Days to Deploy Linux Rootkits

A sophisticated Chinese threat group identified as Houken has been exploiting multiple zero-day vulnerabilities in Ivanti Cloud Service Appliance (CSA) devices to deploy advanced Linux rootkits and es …

Published Date:
Jul 02, 2025 (2 hours, 18 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2024-9380

CVE-2024-8963

CVE-2024-8190

Source: Read More

Previous ArticleFranse overheid beschrijft aanvallen op organisaties via Ivanti-lekken

Next Article YONO SBI Banking App Vulnerability Let Attackers Execute a Man-in-the-Middle Attack

Highlights

CVE-2023-53129 – Linux Kernel – ext4 Directory Rename Deadlock Vulnerability

May 2, 2025

CVE ID : CVE-2023-53129

Published : May 2, 2025, 4:15 p.m. | 34 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

ext4: Fix deadlock during directory rename

As lockdep properly warns, we should not be locking i_rwsem while having
transactions started as the proper lock ordering used by all directory
handling operations is i_rwsem -> transaction start. Fix the lock
ordering by moving the locking of the directory earlier in
ext4_rename().

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-43924 – Unicom Focal Point Stored Cross Site Scripting Vulnerability

June 3, 2025

Free42 is an HP-42S calculator simulator

April 28, 2025

Microsoft wants app developers to infuse Windows 11 with AI features

May 17, 2025

The AI productivity paradox in software engineering: Balancing efficiency and human skill retention

The impact of gray work on software development

CSS Intelligence: Speculating On The Future Of A Smarter Language

Hallucinated code, real threat: How slopsquatting targets AI-assisted development

Xbox is cancelling Rare’s ‘Everwild’ and ZeniMax’s new MMORPG IP as part of broader cuts — with ‘Perfect Dark’ impacted as well

Microsoft is closing down Xbox studio The Initiative, with Perfect Dark killed as well — joining Everwild and ZeniMax’s new IP, and other unannounced projects

No, Microsoft and Xbox’s Phil Spencer isn’t stepping down any time soon — here’s the truth

Everwild’s cancellation has me worried for one of my favorite dev teams and Xbox itself — It needs creative new games to thrive and refresh its identity

Trust but Verify: The Curious Case of AI Hallucinations

Trust but Verify: The Curious Case of AI Hallucinations

From Flow to Fabric: Connecting Power Automate to Microsoft Fabric

Flutter Web Hot Reload Has Landed – No More Refreshes!

Xbox is cancelling Rare’s ‘Everwild’ and ZeniMax’s new MMORPG IP as part of broader cuts — with ‘Perfect Dark’ impacted as well

Xbox is cancelling Rare’s ‘Everwild’ and ZeniMax’s new MMORPG IP as part of broader cuts — with ‘Perfect Dark’ impacted as well

Microsoft is closing down Xbox studio The Initiative, with Perfect Dark killed as well — joining Everwild and ZeniMax’s new IP, and other unannounced projects

No, Microsoft and Xbox’s Phil Spencer isn’t stepping down any time soon — here’s the truth

Chinese Houken Hackers Exploiting Ivanti CSA Zero-Days to Deploy Linux Rootkits

Chinese Houken Hackers Exploiting Ivanti CSA Zero-Days to Deploy Linux Rootkits

Actively Exploited Google Chrome Zero-Day (CVE-2025-6554) Added to CISA’s KEV Catalog, PoC Available

CVE-2025-20309 affects Cisco Unified CM

CVE-2025-40673 – DinoRANK Unauthorized Invoice Access

Critical CVE-2025-1976 Vulnerability in Brocade Fabric OS Actively Exploited

Windows UWP Map Control and Maps platform API will be deprecated

Is Anxiety Disorder a Neurological Disorder?

CVE-2023-53129 – Linux Kernel – ext4 Directory Rename Deadlock Vulnerability

CVE-2025-43924 – Unicom Focal Point Stored Cross Site Scripting Vulnerability

Free42 is an HP-42S calculator simulator

Microsoft wants app developers to infuse Windows 11 with AI features

Chinese Houken Hackers Exploiting Ivanti CSA Zero-Days to Deploy Linux Rootkits

Chinese Houken Hackers Exploiting Ivanti CSA Zero-Days to Deploy Linux Rootkits

Related Posts