Chinese Hackers Exploited Ivanti Flaw in France

A Chinese hacking operation exploited Ivanti flaws to target French government, defense, and media entities. The French National Agency for Information Systems Security (ANSSI) observed the use of zero-day vulnerabilities to gain access to end-of-life Ivanti Cloud Services Appliance applications. The campaign, dubbed “Houken,” is linked to a threat actor tracked as UNC5174, known for selling access to hacked networks to Beijing-linked hackers.