b2b-daily
Search
Close this search box.
Search
Close this search box.
Home | IT | Cyber Security

Nominet Hit by Zero-Day Vulnerability in Ivanti VPN Products, Patches Released

Avatar photo
by Craig Anderson
January 17, 2025
Nominet Hit by Zero-Day Vulnerability in Ivanti VPN Products, Patches Released

In a significant security breach, Nominet, the UK’s top-level domain registry responsible for managing over 11 million domains including .uk, .wales, and .cymru, recently experienced a zero-day vulnerability in Ivanti VPN products. The incident, which came to light in late December, triggered concern among the cybersecurity community due to its potential for widespread impact. The zero-day attack was traced to a buffer overflow vulnerability in Ivanti Connect Secure, a critical flaw that scored a high 9.0 on the CVSS scale. This particular vulnerability leaves the system susceptible to unauthenticated remote code execution, posing a substantial risk to sensitive internet infrastructure. Additionally, this flaw affected versions of Ivanti Connect Secure before 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons for ZTA gateways before version 22.7R2.3.

Quick Patching and Response

On January 8th, Ivanti quickly rolled out a patch for Connect Secure and pledged to fix other affected products by January 21. Nominet responded immediately, applying the patches and notifying the authorities about the breach. Additionally, Nominet enhanced its security measures by tightening VPN access controls to prevent future exploits. During the incident, Nominet collaborated with external experts to investigate the breach, aiming to minimize any damage swiftly. Initial findings showed no data loss or presence of backdoors, and crucial domain registration and management systems remained operational, ensuring uninterrupted services.

This incident underscores the vital importance of rapid detection and response to zero-day vulnerabilities. It reminds us that even well-secured organizations can be targeted and must be equipped to respond promptly to reduce potential damage. As the investigation delved into the specifics of the intrusion, the focus was on understanding the breach’s depth and preventing future occurrences. The swift responses from Ivanti and Nominet highlighted the need for vigilant and adaptive security measures in today’s constantly changing cybersecurity environment.

Information Security

Explore more

Carrier Unveils QuantumLeap CDUs for Data Center Cooling
November 7, 2025

I’m thrilled to sit down with Dominic Jainy, an IT professional whose deep expertise in cutting-edge technologies like artificial intelligence, machine learning, and blockchain extends to a keen understanding of innovative solutions in data center operations. Today, we’re diving into the world of thermal management as we explore Carrier Global Corporation’s latest launch of cooling distribution units (CDUs) for liquid

Power BI Integration – Review
November 7, 2025

In today’s fast-paced business environment, the ability to transform raw data into actionable insights stands as a critical competitive advantage, with studies showing that data-driven organizations outperform their peers by a significant margin in operational efficiency. For companies leveraging Microsoft Dynamics 365 Business Central, the integration of Power BI offers a transformative solution to this challenge, promising seamless analytics and

How Does RPA Slash Business Costs and Boost Efficiency?
November 7, 2025

In today’s competitive business landscape, companies are constantly seeking innovative solutions to reduce operational expenses while maintaining high productivity levels, and many face challenges like escalating costs due to manual data entry errors and slow processing times. Consider a scenario where a mid-sized logistics firm struggles with these issues, risking customer dissatisfaction and financial losses—a challenge far from unique as

How Is Dynamics 365 Business Central Redefining ERP with AI?
November 7, 2025

Introduction In an era where small and midsized businesses (SMBs) face mounting pressure to optimize operations with limited resources, a staggering number of organizations—over 50,000 globally—have turned to a single platform to transform their processes through intelligent automation. This shift highlights a growing need for ERP systems that not only manage core functions but also anticipate challenges with cutting-edge technology.

What Are the Leaked Features of the Samsung Galaxy S26 Series?
November 7, 2025

Smartphone enthusiasts are buzzing with anticipation as whispers of Samsung’s latest flagship lineup begin to surface across tech circles, sparking curiosity among consumers and analysts alike. With the premium smartphone market growing fiercer by the day, leaked details about the Galaxy S26 series have fueled excitement. This roundup gathers insights from various credible tipsters, industry watchers, and corporate hints to