News

Ivanti patches Connect Secure zero-day exploited since mid-March
Ivanti has released security updates to patch a critical Connect Secure remote code execution vulnerability exploited by a ...
CISA warns new malware targeting Ivanti zero-day vulnerability
CVE-2025-0282, a critical vulnerability that affects Ivanti’s Connect Secure, Policy Secure and ZTA Gateway products, was disclosed and patched in January.
TRAILBLAZE & BRUSHFIRE Malware Deployed in Ivanti Apps/Services
IT software vendor Ivanti recently released details of a now-patched critical security vulnerability affecting Ivanti Connect ...
HealthcareInfoSecurity19d
Rootkit, Backdoor and Tunneler: Ivanti Malware Does It All
Hackers using Trojans connected to a malware family deployed by Chinese nation-state hackers are actively exploiting a ...
TechRadar18d
Ivanti products targeted by dangerous malware yet again
CISA is warning of new malware targeting vulnerable Ivanti products Multiple products, vulnerable to a 2024 flaw, are being targeted The malware can create web shells, harvest credentials ...
Ivanti patches serious Connect Secure flaw
Ivanti has recently patched a critical severity vulnerability found in its Connect Secure (ICS) VPN appliances which was allegedly being abused in the wild by Chinese state-sponsored actors.
Infosecurity-magazine.com19d
New Malware Variant RESURGE Exploits Ivanti Vulnerability
A new malware variant dubbed RESURGE has been uncovered by the US Cybersecurity and Infrastructure Security Agency (CISA) and is targeting Ivanti Connect Secure appliances through a critical ...
CSO Online14d
Ivanti warns customers of new critical flaw exploited in the wild
Chinese APT group UNC5221 appears to have studied a recent Ivanti Connect Secure patch to develop a remote code execution ...
DataBreachToday15d
Chinese Espionage Group Targeting Legacy Ivanti VPN Devices
A suspected Chinese cyberespionage operation is behind a spate of malware left on VPN appliances made by Ivanti. The threat ...