Vulnerability revealed by Ivanti has been exploited by the same group that targeted Connect Secure from January 2024.

Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies.

The two issues aren't believed to be chained in the attacks. Ivanti said that CVE-2025-0282 is the exploited zero-day, but ...

Hackers exploiting the critical Ivanti Connect Secure zero-day vulnerability disclosed yesterday installed on compromised VPN ...

VPN appliance maker Ivanti has begun releasing updates to patch a zero-day vulnerability being actively exploited by ...

Mandiant says a Chinese cyberespionage group has been exploiting the critical-rated vulnerability since at least mid-December.

Ivanti has warned customers of a critical vulnerability impacting its VPN appliances that is being actively exploited in the ...

PHASEJAM is a well-written and multifaceted bash shell script. It first installs a web shell that gives the remote hackers ...

The UK internet domain registry, Nominet, has confirmed to ISPreview that their network has suffered an "unauthorised ...

Ivanti’s Connect Secure VPN is vulnerable to a critical-severity zero-day vulnerability that has been exploited in attacks as ...

Researchers at Google Cloud-owned Mandiant say that the exploitation of a critical Ivanti Connect Secure vulnerability began ...

Security researchers at Mandiant are confident that Chinese hackers are behind an ongoing malware campaign exploiting a flaw ...