b2b-daily
Search
Close this search box.
Search
Close this search box.
Home | IT | Cyber Security

Nominet Hit by Zero-Day Vulnerability in Ivanti VPN Products, Patches Released

Avatar photo
by Craig Anderson
January 17, 2025
Nominet Hit by Zero-Day Vulnerability in Ivanti VPN Products, Patches Released

In a significant security breach, Nominet, the UK’s top-level domain registry responsible for managing over 11 million domains including .uk, .wales, and .cymru, recently experienced a zero-day vulnerability in Ivanti VPN products. The incident, which came to light in late December, triggered concern among the cybersecurity community due to its potential for widespread impact. The zero-day attack was traced to a buffer overflow vulnerability in Ivanti Connect Secure, a critical flaw that scored a high 9.0 on the CVSS scale. This particular vulnerability leaves the system susceptible to unauthenticated remote code execution, posing a substantial risk to sensitive internet infrastructure. Additionally, this flaw affected versions of Ivanti Connect Secure before 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3.

Quick Patching and Response

On January 8th, Ivanti quickly rolled out a patch for Connect Secure and pledged to fix other affected products by January 21. Nominet responded immediately, applying the patches and notifying the authorities about the breach. Additionally, Nominet enhanced its security measures by tightening VPN access controls to prevent future exploits. During the incident, Nominet collaborated with external experts to investigate the breach, aiming to minimize any damage swiftly. Initial findings showed no data loss or presence of backdoors, and crucial domain registration and management systems remained operational, ensuring uninterrupted services.

This incident underscores the vital importance of rapid detection and response to zero-day vulnerabilities. It reminds us that even well-secured organizations can be targeted and must be equipped to respond promptly to reduce potential damage. As the investigation delved into the specifics of the intrusion, the focus was on understanding the breach’s depth and preventing future occurrences. The swift responses from Ivanti and Nominet highlighted the need for vigilant and adaptive security measures in today’s constantly changing cybersecurity environment.

Information Security

Explore more

How Can XOS Pulse Transform Your Customer Experience?
August 8, 2025

This guide aims to help organizations elevate their customer experience (CX) management by leveraging XOS Pulse, an innovative AI-driven tool developed by McorpCX. Imagine a scenario where a business struggles to retain customers due to inconsistent service quality, losing ground to competitors who seem to effortlessly meet client expectations. This challenge is more common than many realize, with studies showing

How Does AI Transform Marketing with Conversionomics Updates?
August 8, 2025

Setting the Stage for a Data-Driven Marketing Era In an era where digital marketing budgets are projected to surpass $700 billion globally by 2027, the pressure to deliver precise, measurable results has never been higher, and marketers face a labyrinth of challenges. From navigating privacy regulations to unifying fragmented consumer touchpoints across diverse media channels, the complexity is daunting, but

AgileATS for GovTech Hiring – Review
August 8, 2025

Setting the Stage for GovTech Recruitment Challenges Imagine a government contractor racing against tight deadlines to fill critical roles requiring security clearances, only to be bogged down by outdated hiring processes and a shrinking pool of qualified candidates. In the GovTech sector, where federal regulations and talent scarcity create formidable barriers, the stakes are high for efficient recruitment. Small and

Trend Analysis: Global Hiring Challenges in 2025
August 8, 2025

Imagine a world where nearly 70% of global employers are uncertain about their hiring plans due to an unpredictable economy, forcing businesses to rethink every recruitment decision. This stark reality paints a vivid picture of the complexities surrounding talent acquisition in today’s volatile global market. Economic turbulence, combined with evolving workplace expectations, has created a challenging landscape for organizations striving

Automation Cuts Insurance Claims Costs by Up to 30%
August 8, 2025

In this engaging interview, we sit down with a seasoned expert in insurance technology and digital transformation, whose extensive experience has helped shape innovative approaches to claims handling. With a deep understanding of automation’s potential, our guest offers valuable insights into how digital tools can revolutionize the insurance industry by slashing operational costs, boosting efficiency, and enhancing customer satisfaction. Today,