Hackers are exploiting a new Ivanti VPN security bug
Ongoing attacks on Ivanti VPNs install a ton of sneaky, well-written malware
PHASEJAM is a well-written and multifaceted bash shell script. It first installs a web shell that gives the remote hackers privileged control of devices. It then injects a function into the Connect Secure update mechanism that’s intended to simulate the upgrading process.
Google: Chinese hackers likely behind Ivanti VPN zero-day attacks
Hackers exploiting the critical Ivanti Connect Secure zero-day vulnerability disclosed yesterday installed on compromised VPN appliances new malware called 'Dryhook' and 'Phasejam' that is not currently associated with any threat group.
Ivanti has warned customers of a critical vulnerability impacting its VPN appliances that is being actively exploited in the ...
The Register on MSN20h
Zero-day exploits plague Ivanti Connect Secure appliances for second year runningFactory resets and apply patches is the advice amid fortnight delay for other appliances The cybersecurity industry is urging ...
Vulnerability revealed by Ivanti has been exploited by the same group that targeted Connect Secure from January 2024.
Ivanti’s Connect Secure VPN is vulnerable to a critical-severity zero-day vulnerability that has been exploited in attacks as ...
Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies.
VPN appliance maker Ivanti has begun releasing updates to patch a zero-day vulnerability being actively exploited by ...
Ivanti is warning that a new Connect Secure remote code execution vulnerability tracked as CVE-2025-0282 was exploited in ...
Ivanti confirms zero-day exploitation of a remotely exploitable code execution vulnerability (CVE-2025-0282) in its Connect ...
Firewalls and VPN appliances are critical gateways. Like all on-prem systems, a vulnerability can lead to a compromise that ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback