Threat actors are once again lining up to exploit vulnerabilities in the widely used Ivanti product suite, with a link to Chinese espionage activity firmed up by Mandiant analysts.
PHASEJAM is a well-written and multifaceted bash shell script. It first installs a web shell that gives the remote hackers ...
Vulnerability revealed by Ivanti has been exploited by the same group that targeted Connect Secure from January 2024.
The latest attacks come one year after a threat group exploited a pair of zero-days in the same Ivanti product.
Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies.
Ivanti has warned customers of a critical vulnerability impacting its VPN appliances that is being actively exploited in the ...
Ivanti issues urgent alert on a new vulnerability found in their Connect Secure product, urging immediate action to mitigate ...
Researchers at Google Cloud-owned Mandiant say that the exploitation of a critical Ivanti Connect Secure vulnerability began ...
According to Ivanti, CVE-2025-0282 is a so-called stack overflow vulnerability. Such exploits enable hackers to write more ...
Ivanti's CVE-2025-0282 flaw, exploited by China-linked actors, enables remote code execution. CISA demands urgent patching by ...
The Register on MSN1d
Zero-day exploits plague Ivanti Connect Secure appliances for second year runningThe two issues aren't believed to be chained in the attacks. Ivanti said that CVE-2025-0282 is the exploited zero-day, but ...
Hackers exploiting the critical Ivanti Connect Secure zero-day vulnerability disclosed yesterday installed on compromised VPN ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback