Ivanti patches CVE-2025-22457 exploited by UNC5221 in March 2025, risking remote code execution and credential theft.

Financial statement fraud is once again making headlines. Fashion startup CaaStle has accused its co-founder and CEO, ...

A suspected Chinese cyberespionage operation is behind a spate of malware left on VPN appliances made by Ivanti. The threat ...

IT software vendor Ivanti recently released details of a now-patched critical security vulnerability affecting Ivanti Connect ...

Ivanti has recently patched a critical severity vulnerability found in its Connect Secure (ICS) VPN appliances which was ...

Chinese APT group UNC5221 appears to have studied a recent Ivanti Connect Secure patch to develop a remote code execution ...

Mandiant warned that Chinese espionage actor UNC5221 is actively exploiting a critical Ivanti vulnerability, which can lead ...

Ivanti has misjudged a bug in the VPN software Connect Secure. This is a security vulnerability that is under attack.

A Chinese APT group has managed to find a way to exploit a critical flaw in Ivanti’s Connect Secure VPN appliances, even ...

On March 28, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) released a Malware Analysis Report (MAR) on RESURGE malware, which ...

Exploitation of the newly disclosed remote code execution bug CVE-2025-22457 may have been occurring since mid-March.

Ivanti released a security advisory regarding the active exploitation of a critical security flaw affecting vulnerable Ivanti Connect Secure, Pulse Connect Secure, Policy Secure, and ZTA gateway ...