News

Ivanti products targeted by dangerous malware yet again
CISA is warning of new malware targeting vulnerable Ivanti products Multiple products, vulnerable to a 2024 flaw, are being ...
Ivanti patches Connect Secure zero-day exploited since mid-March
Ivanti has released security updates to patch a critical Connect Secure remote code execution vulnerability exploited by a ...
CISA spots spawn of Spawn malware targeting Ivanti flaw
Uncle Sam dubbed the latest software nasty Resurge, and warned it infects devices by exploiting CVE-2025-0282 - a critical ...
The Hacker News6d
Critical Ivanti Flaw Actively Exploited to Deploy TRAILBLAZE and BRUSHFIRE Malware
Ivanti patches CVE-2025-22457 exploited by UNC5221 in March 2025, risking remote code execution and credential theft.
CSO Online9d
Ivanti warns customers of new critical flaw exploited in the wild
Chinese APT group UNC5221 appears to have studied a recent Ivanti Connect Secure patch to develop a remote code execution ...
Infosecurity Magazine13d
New Malware Variant RESURGE Exploits Ivanti Vulnerability
CISA recommends immediate action to address malware variant RESURGE exploiting Ivanti vulnerability CVE-2025-0282 ...
CISA warns new malware targeting Ivanti zero-day vulnerability
CVE-2025-0282, a critical vulnerability that affects Ivanti’s Connect Secure, Policy Secure and ZTA Gateway products, was ...
SecurityWeek13d
CISA Analyzes Malware Used in Ivanti Zero-Day Attacks
CISA has published its analysis of Resurge, a SpawnChimera malware variant used in attacks targeting a recent Ivanti Connect Secure zero-day.
TRAILBLAZE & BRUSHFIRE Malware Deployed in Ivanti Apps/Services
IT software vendor Ivanti recently released details of a now-patched critical security vulnerability affecting Ivanti Connect ...
CISA warns of "Resurge" malware after Ivanti ICS attacks
Attacks on Ivanti's ICS have been known since the beginning of January. CISA has analyzed the malware that attackers have ...