Nominet Confirms Cybersecurity Incident Linked to Ivanti

Nominet, the U.K. domain registry, has confirmed a cybersecurity incident linked to a newly exploited zero-day vulnerability in Ivanti's Connect Secure VPN software. The breach allowed hackers to access Nominet's network, but the company has stated there is currently no evidence of data breach or data leakage. Nominet is actively investigating the incident while restricting access to its systems and has communicated with relevant authorities, including the National Cyber Security Centre. Ivanti acknowledged the exploitation of this vulnerability, which is affecting its Connect Secure, Policy Secure, and Neurons for ZTA products, and plans to release a patch in January. Threat intelligence firms have observed a significant number of unpatched Ivanti VPN instances, raising concerns about widespread exploitation. Nominet is the first organization to publicly acknowledge being impacted by this vulnerability, which has been linked to previous cyberattacks involving Ivanti products.