Threat actors are once again lining up to exploit vulnerabilities in the widely used Ivanti product suite, with a link to Chinese espionage activity firmed up by Mandiant analysts.
Vulnerability revealed by Ivanti has been exploited by the same group that targeted Connect Secure from January 2024.
PHASEJAM is a well-written and multifaceted bash shell script. It first installs a web shell that gives the remote hackers ...
Researchers at Google Cloud-owned Mandiant say that the exploitation of a critical Ivanti Connect Secure vulnerability began ...
Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies.
According to Ivanti, CVE-2025-0282 is a so-called stack overflow vulnerability. Such exploits enable hackers to write more ...
Hackers exploiting the critical Ivanti Connect Secure zero-day vulnerability disclosed yesterday installed on compromised VPN ...
Mandiant says a Chinese cyberespionage group has been exploiting the critical-rated vulnerability since at least mid-December.
Ivanti issues urgent alert on a new vulnerability found in their Connect Secure product, urging immediate action to mitigate ...
The latest attacks come one year after a threat group exploited a pair of zero-days in the same Ivanti product.
The Register on MSN1d
Zero-day exploits plague Ivanti Connect Secure appliances for second year runningThe two issues aren't believed to be chained in the attacks. Ivanti said that CVE-2025-0282 is the exploited zero-day, but ...
Ivanti has warned customers of a critical vulnerability impacting its VPN appliances that is being actively exploited in the ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback