Threat actors are once again lining up to exploit vulnerabilities in the widely used Ivanti product suite, with a link to Chinese espionage activity firmed up by Mandiant analysts.
Vulnerability revealed by Ivanti has been exploited by the same group that targeted Connect Secure from January 2024.
Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies.
PHASEJAM is a well-written and multifaceted bash shell script. It first installs a web shell that gives the remote hackers ...
The latest attacks come one year after a threat group exploited a pair of zero-days in the same Ivanti product.
Ivanti has warned customers of a critical vulnerability impacting its VPN appliances that is being actively exploited in the ...
According to Ivanti, CVE-2025-0282 is a so-called stack overflow vulnerability. Such exploits enable hackers to write more ...
Researchers at Google Cloud-owned Mandiant say that the exploitation of a critical Ivanti Connect Secure vulnerability began ...
U.S. intelligence say the Volt, Flax, Salt and Silk Typhoon hacking groups are laying the groundwork for future conflict with ...
Hackers exploiting the critical Ivanti Connect Secure zero-day vulnerability disclosed yesterday installed on compromised VPN ...
Ivanti's CVE-2025-0282 flaw, exploited by China-linked actors, enables remote code execution. CISA demands urgent patching by ...
The Register on MSN1d
Zero-day exploits plague Ivanti Connect Secure appliances for second year runningThe two issues aren't believed to be chained in the attacks. Ivanti said that CVE-2025-0282 is the exploited zero-day, but ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback