Suspected Chinese spies right now hijacking buggy Ivanti gear – for third time in 3 years
The new critical bug, CVE-2025-22457, is a stack-based buffer overflow flaw that can lead to unauthenticated remote code ...
Ivanti patches Connect Secure zero-day exploited since mid-March
Ivanti has released security updates to patch a critical Connect Secure remote code execution vulnerability exploited by a ...
SecurityWeek3h
Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN Appliances
Ivanti misdiagnoses a remote code execution vulnerability and Mandiant reports that Chinese hackers are launching in-the-wild ...
Cybernews40m
Chinese threat actor jumps on misdiagnosed RCE in Ivanti VPN appliances
A Chinese APT group has managed to find a way to exploit a critical flaw in Ivanti’s Connect Secure VPN appliances, even ...