CISA warns that RESURGE malware can be dormant on Ivanti devices

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released new details about RESURGE, a malicious implant used in zero-day attacks exploiting CVE-2025-0282 to breach Ivanti Connect ...

One threat actor responsible for 83% of recent Ivanti RCE attacks

Threat intelligence observations show that a single threat actor is responsible for most of the active exploitation of two critical vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM), tracked as ...
CSO Online

Attackers exploit Ivanti EPMM zero-days to seize control of MDM servers

Palo Alto Networks’ Unit 42 says two critical flaws are being actively abused to gain unauthenticated access, deploy persistent backdoors, and compromise entire enterprise mobile fleets even after ...
Direct Marketing News

Ivanti patches critical flaws in Connect Secure

To learn more about our editorial approach, explore The Direct Message methodology. When Ivanti disclosed a critical vulnerability in its Connect Secure platform in early 2025, the company had ...
Hosted on MSN

Widespread Ivanti EPMM exploits target governments and critical organizations

Security teams across the globe are tracking a surge in exploitation activity aimed at Ivanti Endpoint Manager Mobile (EPMM), a platform widely used to manage and secure mobile devices in enterprise ...