Ivanti Faces New Zero-Day Exploits Linked to Nation-State Actors

Friday, 10 January, 2025

Ivanti Faces New Zero-Day Exploits Linked to Nation-State Actors

Ivanti has disclosed a critical zero-day vulnerability, CVE-2025-0282, affecting multiple products, including Connect Secure. Exploited since mid-December 2024, this flaw allows unauthenticated remote code execution, potentially compromising entire networks. Mandiant attributes the attacks to a China-nexus group, UNC5337, possibly linked to previous Ivanti exploits. Ivanti has released patches and urges immediate updates to mitigate risks.

Read full story at Cybersecurity News

Tags:Networks vulnerability execution

Categories

Ivanti Faces New Zero-Day Exploits Linked to Nation-State Actors

Also Read

Critical Vulnerabilities in Palo Alto Networks' Expedition Tool Demand Immediate Attention

Japan Faces Prolonged Cyber-Attacks Linked to China's MirrorFace

Hong Kong Releases Draft Law to Bolster Cybersecurity for Critical Infrastructures

India Plans to Implement Trusted Source Rules in Power Sector

Ivanti Faces New Zero-Day Exploits Linked to Nation-State Actors

Apple Reaffirms Siri Privacy Practices Following $95 Million Settlement

U.S. Introduces Cybersecurity Labeling for Smart Devices

Israeli Cybersecurity Firms Secure $4 Billion in 2024 Amid Cloud and AI Security Demand

India Proposes Digital Data Protection Rules with Strict Penalties

Subscribe To Our Newsletter.