Ivanti released patches for vulnerable Connect Secure versions at the time of the zero-day disclosure, but Policy Secure and ...

Threat hunters are on high alert as 900 Ivanti Connect Secure instances remain unpatched and vulnerable to exploitation, ...

Nominet, the official .UK domain registry and one of the largest country code registries, has confirmed that its network was ...

Ivanti is warning that a new Connect Secure remote code execution vulnerability tracked as CVE-2025-0282 was exploited in ...

The two issues aren't believed to be chained in the attacks. Ivanti said that CVE-2025-0282 is the exploited zero-day, but ...

Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies.

Ivanti confirms zero-day exploitation of a remotely exploitable code execution vulnerability (CVE-2025-0282) in its Connect ...

Vulnerability revealed by Ivanti has been exploited by the same group that targeted Connect Secure from January 2024.

The zero-day in question was revealed and patched by Ivanti on January 8. Stack-based buffer overflow bug CVE-2025-0282 has a ...

Ivanti disclosed two vulnerabilities in its Connect Secure, Policy Secure and Neurons for ZTA gateway devices, including one ...

VPN appliance maker Ivanti has begun releasing updates to patch a zero-day vulnerability being actively exploited by ...

The latest attacks come one year after a threat group exploited a pair of zero-days in the same Ivanti product.