Skip to main content

Tag: ivanti

45 articles

Rack of networking equipment in a brightly-lit municipal network closet.

Fortinet and Ivanti Exploits Fuel LATAM Infrastructure Attacks

In a shocking revelation, a coordinated campaign dubbed Operation Escaneo has been exposed, targeting critical infrastructure across Mexico, Ecuador, and Portugal, with a staggering 3,708 sessions recorded over just 13 days. The attackers exploited vulnerabilities in Fortinet and Ivanti perimeter appliances to gain entry into government, tax authorities, utilities, transport, telecoms, and banks.

Analyst 207
Laptop screen on a neutral surface in a bright, clean tech facility setting.

Fortinet, Ivanti, SAP Patch Critical Vulnerabilities

This week, Fortinet, Ivanti, and SAP issued urgent patch rollouts to fix critical vulnerabilities that could allow hackers to execute remote code or gain unauthorized access to sensitive systems. The flaws, affecting sandboxing infrastructure, mobile gateway software, and core enterprise apps, carry high severity scores and demand immediate attention.

Analyst 207
Technicians in a server room focus on equipment with a monitor nearby.

Ivanti Warns of Critical Bugs in Sentry Software, Urges Immediate Patching

Ivanti is urging Sentry customers to patch immediately due to critical bugs affecting versions 10.0 and 9.9, and it's crucial to act now to avoid potential security risks. Don't delay - apply the necessary patches to keep your system secure.

Analyst 207
Secure mobile gateway appliance on a plain surface with a clean, minimalist background.

Ivanti Patches Zero-Day Flaw Allowing Root Code Execution

Ivanti has patched a high-risk zero-day flaw that could let hackers run malicious code with root access, and fortunately, there are no known cases of exploitation so far. The vulnerability, tracked as CVE-2026-10520, affects the company's Sentry secure mobile gateway and allows for OS command injection permitting root execution.

Analyst 207
Exposure Management Shields Against Lurking Vulnerabilities

Exposure Management Shields Against Lurking Vulnerabilities

Don't let a single vulnerability be the Death Star of your defense - even the strongest systems can be undermined by a shared insider weakness. Start with asset discovery to proactively manage exposure and shield against lurking threats.

Analyst 207
Rows of equipment racks and patch panels in a brightly-lit server room or network closet.

CISA Mandates Patching of Ivanti Flaw Exploited in Zero-Day Attacks

The US Cybersecurity and Infrastructure Security Agency (CISA) is requiring immediate patching of a high-risk Ivanti flaw, CVE-2026-6973, that allows attackers with admin privileges to remotely execute code on vulnerable systems. This critical vulnerability affects Ivanti Endpoint Manager Mobile (EPMM) version 12.8.0.0 and earlier.

Analyst 207
Rows of equipment and racks in a brightly-lit server room with a single unoccupied laptop in the foreground.

Ivanti Discloses Actively Exploited Zero-Day in Endpoint Manager

Ivanti has confirmed that hackers are actively exploiting a zero-day vulnerability, CVE-2026-6973, in its Endpoint Manager Mobile (EPMM) software, allowing them to run code remotely with administrative privileges. The company has issued patches for this and four other EPMM flaws to protect its customers.

Analyst 207
IT staff members work at a computer terminal in a brightly-lit server room with a blurred monitoring screen in the…

Ivanti Discloses High-Severity EPMM Flaw Exploited in Zero-Day Attacks

Ivanti has disclosed a high-severity flaw in its Endpoint Manager Mobile (EPMM) product, which has been exploited in limited zero-day attacks requiring admin authentication. To protect against this vulnerability, customers are advised to patch to Ivanti EPMM versions 12.6.1.1, 12.7.0.1, or 12.8.0.1.

Analyst 207
Ivanti EPMM Urgent: Must-Have Fixes for Risky Flaws

Ivanti EPMM Urgent: Must-Have Fixes for Risky Flaws

Urgent: CISA found attackers exploited Ivanti EPMM flaws to push multiple malware families — if your organization uses this MDM, patch immediately and rotate admin credentials. Lock down management access with MFA and monitor console activity now to prevent a potentially wide-scale breach.

Analyst 207
Ivanti EPMM Critical Risk: Exclusive Malware Warning

Ivanti EPMM Critical Risk: Exclusive Malware Warning

CISA is warning that threat actors have exploited critical Ivanti EPMM flaws (CVE-2025-4427/4428) to drop stealthy loaders and listeners that give attackers remote control and a wide blast radius. If you manage EPMM, patch now, lock down access and credentials, and start looking for suspicious listener and remote-execution activity before it’s too late.

Analyst 207
Salt Typhoon: Exclusive Risky Breach Exposes 600+ Orgs

Salt Typhoon: Exclusive Risky Breach Exposes 600+ Orgs

A China-linked APT called Salt Typhoon has quietly breached over 600 organizations by exploiting Cisco, Ivanti, and Palo Alto flaws—targeting backbone routers and management systems to gain persistent, wide-reaching access. The campaign is a wake-up call to prioritize patching, inventory, and stronger segmentation and logging for every organization that relies on critical network infrastructure.

Analyst 207
Ivanti Zero-Days: Risky Threat — Must-Have Fixes

Ivanti Zero-Days: Risky Threat — Must-Have Fixes

Ivanti Connect Secure appliances were recently abused via two zero-days to install MDifyLoader and unleash Cobalt Strike, turning trusted VPN gateways into powerful footholds for attackers. Act now: patch immediately, enforce MFA and segmentation, and ramp up monitoring and threat hunting to stop this fast-moving threat.

Analyst 207
Ivanti zero-day exploits: Stunning Urgent Alert

Ivanti zero-day exploits: Stunning Urgent Alert

If you use Ivanti Connect Secure, the string of zero-day attacks exploiting CVE-2025-0282 and CVE-2025-22457 — amplified by the new MDifyLoader and Cobalt Strike — shows how quickly unpatched gear can become an attacker’s beachhead. Act fast: patch, tighten access, and boost monitoring to stop these stealthy, two-stage intrusions before they escalate.

Analyst 207
Weekly Security Roundup: Chrome Vulnerabilities, Ivanti Exploits, MacOS Threats, Crypto Crimes, and More

Weekly Security Roundup: Chrome Vulnerabilities, Ivanti Exploits, MacOS Threats, Crypto Crimes, and More

Stay informed with our Weekly Security Roundup covering Chrome vulnerabilities, Ivanti exploits, MacOS threats, crypto crimes, and more.

Analyst 207
Chinese Hackers Exploit Ivanti CSA Zero-Days in Attacks on French Government, Telecoms

Chinese Hackers Exploit Ivanti CSA Zero-Days in Attacks on French Government, Telecoms

Chinese hackers exploit Ivanti CSA zero-days, targeting French government and telecom sectors, highlighting urgent cybersecurity vulnerabilities.

Analyst 207
Chinese Cyberattackers Target Ivanti Vulnerability in France

Chinese Cyberattackers Target Ivanti Vulnerability in France

Chinese cyberattackers exploit Ivanti vulnerability to launch targeted attacks in France, compromising sensitive data and systems.

Analyst 207
Chinese Cyber Attackers Exploit Ivanti Zero-Day Vulnerability in France

Chinese Cyber Attackers Exploit Ivanti Zero-Day Vulnerability in France

Chinese cyber attackers target a critical Ivanti zero-day vulnerability in France, highlighting urgent cybersecurity concerns and the need for immediate action.

Analyst 207
Ivanti Workspace Control hardcoded key flaws expose SQL credentials

Ivanti Workspace Control hardcoded key flaws expose SQL credentials

Ivanti Workspace Control hardcoded key flaws expose SQL credentials, risking unauthorized access and compromising sensitive enterprise data and systems.

Analyst 207
Exploitable Ivanti Flaw Threatens Security of UK NHS Data

Exploitable Ivanti Flaw Threatens Security of UK NHS Data

Exploitable Ivanti flaw jeopardizes UK NHS data security, exposing vulnerabilities and heightening concerns over patient privacy and system integrity.

Analyst 207
Ivanti makes dedicated fans of Chinese spies who just can’t resist attacking its buggy kit

Ivanti makes dedicated fans of Chinese spies who just can’t resist attacking its buggy kit

Ivanti’s buggy kit sparks a cult following among dedicated Chinese spies who relentlessly attack its flaws, fueling a unique tech controversy.

Analyst 207
US Indicts Mastermind Behind Qakbot Malware in Major Cybersecurity Crackdown

US Indicts Mastermind Behind Qakbot Malware in Major Cybersecurity Crackdown

US indicts mastermind behind Qakbot malware in major cybersecurity crackdown, targeting key players in global cybercrime networks.

Analyst 207
Chinese Hackers Exploit Ivanti EPMM Vulnerability to Infiltrate Government Agencies

Chinese Hackers Exploit Ivanti EPMM Vulnerability to Infiltrate Government Agencies

Chinese hackers exploited an Ivanti EPMM vulnerability to infiltrate government agencies, triggering urgent cybersecurity alerts and a global patching response.

Analyst 207
Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks

Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks

Chinese hackers exploit Ivanti EPMM bugs to breach global enterprise networks in a new cyberattack wave, exposing vulnerabilities.

Analyst 207
Ivanti Hijack Bug Exploitation Extends to Cloud Infrastructures

Ivanti Hijack Bug Exploitation Extends to Cloud Infrastructures

Ivanti Hijack Bug exploitation now targets cloud infrastructures, exposing systems to remote execution risks and data breaches.

Analyst 207