Ivanti

Security | Apr 03, 2025

Ivanti Connect Secure is under attack - again! "Low level" bug actually pre-auth RCE

OK, it's critical after all...

News | Mar 31, 2025

CISA uncovers more Ivanti ICS targeting malware…dub it RESURGE

It’s the end of March 2025...of course CISOs still need to worry about Ivanti Connect Secure flaws.

| Security | Jan 10, 2025

Ivanti zero day: 2,000 exposed; Anti-forensics draw attention

Factory reset devices after threat hunting even if NO compromise detected says CISA

Security | Jan 09, 2025

Ivanti zero day exploited in the wild - attacks started mid-December

Previously unseen malware being deployed, and UK's NCSC is "investigating cases of active exploitation affecting UK networks"

Security | Oct 14, 2024

Attackers are hitting legacy Ivanti boxes, patching them to keep rivals out

But details of campaign blasted by one industry veteran for giving away too much detail on web shells on victims' systems

Security | Sep 17, 2024

Exploit lands for CVSS 10 Ivanti bug

"Defender won’t catch this..."

Security | Aug 07, 2024

Ivanti is the Rihanna of CVEs, Qualys' top exploit chart shows

Still a hit with hackers after all these months

Security | May 02, 2024

Gird your loins, there’s a new pre-auth RCE in Ivanti boxes landing

"Code execution in 0 seconds (3 seconds to be more accurate), no limitation, no authentication..."

| Security | Apr 21, 2024

MITRE attack strikes a NERVE after Ivanti to VMware pivot

"We did not detect… lateral movement into our VMware infrastructure. At the time we believed we took all the necessary actions to mitigate the vulnerability, but these actions were clearly insufficient.”

16