Tag: ivanti
45 articles

Fortinet and Ivanti Exploits Fuel LATAM Infrastructure Attacks
In a shocking revelation, a coordinated campaign dubbed Operation Escaneo has been exposed, targeting critical infrastructure across Mexico, Ecuador, and Portugal, with a staggering 3,708 sessions recorded over just 13 days. The attackers exploited vulnerabilities in Fortinet and Ivanti perimeter appliances to gain entry into government, tax authorities, utilities, transport, telecoms, and banks.

Fortinet, Ivanti, SAP Patch Critical Vulnerabilities
This week, Fortinet, Ivanti, and SAP issued urgent patch rollouts to fix critical vulnerabilities that could allow hackers to execute remote code or gain unauthorized access to sensitive systems. The flaws, affecting sandboxing infrastructure, mobile gateway software, and core enterprise apps, carry high severity scores and demand immediate attention.

Ivanti Warns of Critical Bugs in Sentry Software, Urges Immediate Patching
Ivanti is urging Sentry customers to patch immediately due to critical bugs affecting versions 10.0 and 9.9, and it's crucial to act now to avoid potential security risks. Don't delay - apply the necessary patches to keep your system secure.

Ivanti Patches Zero-Day Flaw Allowing Root Code Execution
Ivanti has patched a high-risk zero-day flaw that could let hackers run malicious code with root access, and fortunately, there are no known cases of exploitation so far. The vulnerability, tracked as CVE-2026-10520, affects the company's Sentry secure mobile gateway and allows for OS command injection permitting root execution.

Exposure Management Shields Against Lurking Vulnerabilities
Don't let a single vulnerability be the Death Star of your defense - even the strongest systems can be undermined by a shared insider weakness. Start with asset discovery to proactively manage exposure and shield against lurking threats.

CISA Mandates Patching of Ivanti Flaw Exploited in Zero-Day Attacks
The US Cybersecurity and Infrastructure Security Agency (CISA) is requiring immediate patching of a high-risk Ivanti flaw, CVE-2026-6973, that allows attackers with admin privileges to remotely execute code on vulnerable systems. This critical vulnerability affects Ivanti Endpoint Manager Mobile (EPMM) version 12.8.0.0 and earlier.

Ivanti Discloses Actively Exploited Zero-Day in Endpoint Manager
Ivanti has confirmed that hackers are actively exploiting a zero-day vulnerability, CVE-2026-6973, in its Endpoint Manager Mobile (EPMM) software, allowing them to run code remotely with administrative privileges. The company has issued patches for this and four other EPMM flaws to protect its customers.

Ivanti Discloses High-Severity EPMM Flaw Exploited in Zero-Day Attacks
Ivanti has disclosed a high-severity flaw in its Endpoint Manager Mobile (EPMM) product, which has been exploited in limited zero-day attacks requiring admin authentication. To protect against this vulnerability, customers are advised to patch to Ivanti EPMM versions 12.6.1.1, 12.7.0.1, or 12.8.0.1.

Ivanti EPMM Urgent: Must-Have Fixes for Risky Flaws
Urgent: CISA found attackers exploited Ivanti EPMM flaws to push multiple malware families — if your organization uses this MDM, patch immediately and rotate admin credentials. Lock down management access with MFA and monitor console activity now to prevent a potentially wide-scale breach.

Ivanti EPMM Critical Risk: Exclusive Malware Warning
CISA is warning that threat actors have exploited critical Ivanti EPMM flaws (CVE-2025-4427/4428) to drop stealthy loaders and listeners that give attackers remote control and a wide blast radius. If you manage EPMM, patch now, lock down access and credentials, and start looking for suspicious listener and remote-execution activity before it’s too late.

Salt Typhoon: Exclusive Risky Breach Exposes 600+ Orgs
A China-linked APT called Salt Typhoon has quietly breached over 600 organizations by exploiting Cisco, Ivanti, and Palo Alto flaws—targeting backbone routers and management systems to gain persistent, wide-reaching access. The campaign is a wake-up call to prioritize patching, inventory, and stronger segmentation and logging for every organization that relies on critical network infrastructure.

Ivanti Zero-Days: Risky Threat — Must-Have Fixes
Ivanti Connect Secure appliances were recently abused via two zero-days to install MDifyLoader and unleash Cobalt Strike, turning trusted VPN gateways into powerful footholds for attackers. Act now: patch immediately, enforce MFA and segmentation, and ramp up monitoring and threat hunting to stop this fast-moving threat.

Ivanti zero-day exploits: Stunning Urgent Alert
If you use Ivanti Connect Secure, the string of zero-day attacks exploiting CVE-2025-0282 and CVE-2025-22457 — amplified by the new MDifyLoader and Cobalt Strike — shows how quickly unpatched gear can become an attacker’s beachhead. Act fast: patch, tighten access, and boost monitoring to stop these stealthy, two-stage intrusions before they escalate.

Weekly Security Roundup: Chrome Vulnerabilities, Ivanti Exploits, MacOS Threats, Crypto Crimes, and More
Stay informed with our Weekly Security Roundup covering Chrome vulnerabilities, Ivanti exploits, MacOS threats, crypto crimes, and more.

Chinese Hackers Exploit Ivanti CSA Zero-Days in Attacks on French Government, Telecoms
Chinese hackers exploit Ivanti CSA zero-days, targeting French government and telecom sectors, highlighting urgent cybersecurity vulnerabilities.

Chinese Cyberattackers Target Ivanti Vulnerability in France
Chinese cyberattackers exploit Ivanti vulnerability to launch targeted attacks in France, compromising sensitive data and systems.

Chinese Cyber Attackers Exploit Ivanti Zero-Day Vulnerability in France
Chinese cyber attackers target a critical Ivanti zero-day vulnerability in France, highlighting urgent cybersecurity concerns and the need for immediate action.

Ivanti Workspace Control hardcoded key flaws expose SQL credentials
Ivanti Workspace Control hardcoded key flaws expose SQL credentials, risking unauthorized access and compromising sensitive enterprise data and systems.

Exploitable Ivanti Flaw Threatens Security of UK NHS Data
Exploitable Ivanti flaw jeopardizes UK NHS data security, exposing vulnerabilities and heightening concerns over patient privacy and system integrity.

Ivanti makes dedicated fans of Chinese spies who just can’t resist attacking its buggy kit
Ivanti’s buggy kit sparks a cult following among dedicated Chinese spies who relentlessly attack its flaws, fueling a unique tech controversy.

US Indicts Mastermind Behind Qakbot Malware in Major Cybersecurity Crackdown
US indicts mastermind behind Qakbot malware in major cybersecurity crackdown, targeting key players in global cybercrime networks.

Chinese Hackers Exploit Ivanti EPMM Vulnerability to Infiltrate Government Agencies
Chinese hackers exploited an Ivanti EPMM vulnerability to infiltrate government agencies, triggering urgent cybersecurity alerts and a global patching response.

Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks
Chinese hackers exploit Ivanti EPMM bugs to breach global enterprise networks in a new cyberattack wave, exposing vulnerabilities.

Ivanti Hijack Bug Exploitation Extends to Cloud Infrastructures
Ivanti Hijack Bug exploitation now targets cloud infrastructures, exposing systems to remote execution risks and data breaches.