CISA and the FBI warned today that attackers are still exploiting Ivanti Cloud Service Appliances (CSA) security flaws ...

Ivanti is warning that hackers exploited a Connect Secure remote code execution vulnerability tracked as CVE-2025-0282 in zero-day attacks to install malware on appliances. The company says it ...

Threat hunters are scrambling to determine the scope of damage and potential impact from a critical zero-day vulnerability that impacts a trio of Ivanti products, including Ivanti Connect Secure ...

Attackers exploited and chained multiple previously disclosed Ivanti Cloud Service Appliance vulnerabilities together in ...

This is the same group that has exploited zero-day vulnerabilities in Ivanti Connect Secure appliances back in January 2024 and throughout the year. The latest attacks, exploiting the new CVE-2025 ...

U.S. software giant Ivanti has warned that a zero-day vulnerability in its widely used enterprise VPN appliance has been exploited to compromise the networks of its corporate customers.

The UK’s National Cyber Security Centre (NCSC) and its US equivalent have urged Ivanti customers to take immediate action to mitigate two new vulnerabilities, one of which is being actively exploited.

Unauthorized activity detected, but no backdoors found UK domain registry Nominet is investigating a potential intrusion into ...

Ivanti Policy Secure and Ivanti Neurons for ... one of which has already been exploited in the wild as a zero-day to compromise devices. The exploited vulnerability, tracked as CVE-2025-0282 ...

which almost certainly means further intelligence will be released soon on one or more zero-day threat campaigns targeting Ivanti devices. Ivanti Connect Secure 22.7R2.4 and prior, 9.1R18.9 and ...

Ivanti uncovers two security vulnerabilities, including one critical-severity One of the flaws was being abused as a zero-day by a Chinese threat actor Researchers uncovered never-before-seen ...