In early 2024, the Cybersecurity and Infrastructure Security Agency issued an emergency order to disconnect Ivanti’s Connect Secure VPN software due to a Chinese cyberattack that compromised nearly two dozen organizations, including federal agencies and major corporations. CISA discovered that its own databases had been infiltrated despite following security protocols. This incident raised alarms about the safety of VPN products, particularly those owned by private equity, leading to a reconsideration of cybersecurity software evaluations. Consequently, some organizations are now excluding private equity-owned VPNs from their networks in their risk assessments.
Want More Context? 🔎
Loading PerspectiveSplit analysis...
