Zero-day exploits plague Ivanti Connect Secure appliances for second year running
The two issues aren't believed to be chained in the attacks. Ivanti said that CVE-2025-0282 is the exploited zero-day, but ...
New iPhone, Android Warning—Your Messages Are Secretly Being Watched
Put very simply, only use a fully encrypted platform. That means Signal or WhatsApp or iMessage (if strictly between Apple users) or Google Messages (if strictly between Android users). Do’t message ...
Hackers are exploiting a new Ivanti VPN security bug to hack into company networks
Mandiant says a Chinese cyberespionage group has been exploiting the critical-rated vulnerability since at least mid-December.
SecurityWeek4h
Palo Alto Networks Patches High-Severity Vulnerability in Retired Migration Tool
Palo Alto Networks has released patches for multiple vulnerabilities in the Expedition migration tool, which was retired on ...
SecurityWeek5h
Exploitation of New Ivanti VPN Zero-Day Linked to Chinese Cyberspies
Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies.
Businessworld6h
Cybersecurity Landscape: US Treasury Attack & China’s Rising Cyber Threats
The US Cybersecurity and Infrastructure Security Agency (CISA) has stated that there is no evidence suggesting other federal ...
The Hacker News9h
Ivanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy Secure
Ivanti's CVE-2025-0282 flaw, exploited by China-linked actors, enables remote code execution. CISA demands urgent patching by ...
The Hacker News10h
CISA Flags Critical Flaws in Mitel and Oracle Systems Amid Active Exploitation
CISA lists critical flaws in Mitel MiCollab (CVE-2024-41713, CVE-2024-55550) and Oracle WebLogic (CVE-2020-2883).
Washington Technology14hOpinion
COMMENTARY: How AI will revolutionize cybersecurity in 2025
GitLab's Joel Krooswyk explains the four changes in federal cybersecurity that will be driven by greater use of artificial ...
Mitel 0-day, 5-year-old Oracle RCE bug under active exploit
Cybercriminals are actively exploiting two vulnerabilities in Mitel MiCollab, including a zero-day flaw, alongside a critical ...
Post-Quantum Cryptography Market Set For Accelerated Growth As SEALSQ And Wisekey Lead The Way In Securing Digital Infrastructure
WISeKey, a global leader in cybersecurity, has integrated post-quantum capabilities into its Root of Trust and comprehensive PKI suite of solutions. These innovations provide end-to-end encryption and ...