Networks protected by Ivanti VPNs are under active attack by well-resourced hackers who are exploiting a critical vulnerability that gives them complete control over the network-connected devices. Hardware maker Ivanti disclosed the vulnerability, tracked as CVE-2025-0283, on Wednesday and warned that it was under active exploitation against some customers. The vulnerability, which is being exploited to allow hackers to execute malicious code wi…

Ars Technica

United States

Ongoing attacks on Ivanti VPNs install a ton of sneaky, well-written malware

Ivanti uncovers multiple flaws in its VPN appliances.

Tech Radar

Future plc

United Kingdom

Ivanti warns another critical security flaw is being attacked

Mandiant says a Chinese cyberespionage group has been exploiting the critical-rated vulnerability since at least mid-December.

Ad Fontes Media

All Sides

Media Bias/Fact Check

TechCrunch

Verizon Communications

Hackers are exploiting a new Ivanti VPN security bug to hack into company networks

The essential tech news of the moment. Technology's news site of record. Not for dummies.

Techmeme

California

Ivanti warns that threat actors exploited a critical-rated zero-day in its widely used Connect Secure VPN tool to compromise its corporate customers' networks

Ivanti warns of active attacks on Ivanti Secure Connect systems. Networks can be compromised through code smuggling.

Ivanti warnt vor aktiven Angriffen auf Ivanti Secure Connect-Systeme. Durch Codeschmuggel können Netzwerke kompromittiert werden.

Ivanti Connect Secure: Angreifer attackieren kritische Sicherheitslücke

Heise

Germany

Ivanti Connect Secure: Attackers attack critical security vulnerability

Advance Publications

U.S. software giant Ivanti has warned that a zero-day vulnerability in its widely-used enterprise VPN appliance has been exploited to compromise the networks of its corporate customers. From a report: Ivanti said on Wednesday that the critical-rated vulnerability, tracked as CVE-2025-0282, can be ex...

slashdot.org

Hackers Are Exploiting a New Ivanti VPN Security Bug To Hack Into Company Networks

Hackers exploiting the critical Ivanti Connect Secure zero-day vulnerability disclosed yesterday installed on compromised VPN appliances new malware called 'Dryhook' and 'Phasejam' that is not currently associated with any threat group. [...]

BleepingComputer

Google: Chinese hackers likely behind Ivanti VPN zero-day attacks

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-0282 Ivanti Connect Secure Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal… Read more → The post CISA Adds One Vulnerability to the KEV Catalog appeared first on IT Security News.

IT Security News - cybersecurity, infosecurity news

CISA Adds One Vulnerability to the KEV Catalog

Introduction to Malware Binary Triage (IMBT) Course
Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor. 
Enroll Now and Save 10%: Coupon Code MWNEWS10 
Note: Affiliate link – your e&hellip;

Malware Analysis, News and Indicators

Chinese-linked Hackers May Be Exploiting Latest Ivanti Vulnerability

IT software provider Ivanti released patches Wednesday for its Connect Secure SSL VPN appliances to address two memory corruption vulnerabilities, one of which has already been exploited in the wild as a zero-day to compromise devices. The exploited vulnerability, tracked as CVE-2025-0282, is a stack-based buffer overflow rated as critical with a CVSS score of 9.0. The flaw can be exploited without authentication to achieve remote code execution…

Ongoing attacks on Ivanti VPNs install a ton of sneaky, well-written malware

Coverage Details

Bias Distribution

Ownership

Similar News Topics

Similar News Topics