Nominet Suffers Cyberattack via Ivanti Zero-Day Vulnerability

Tuesday, 14 January, 2025

Nominet Suffers Cyberattack via Ivanti Zero-Day Vulnerability

Nominet, the UK's official .uk domain registry, experienced a cyberattack exploiting a critical zero-day vulnerability (CVE-2025-0282) in Ivanti's VPN software. Detected in early January 2025, the breach allowed unauthenticated remote code execution. Nominet reports no evidence of data theft or unauthorized network access. Ivanti has released patches for Connect Secure, with fixes for other products expected by January 21.

Read full story at Cybersecurity News

Tags:cyberattack unauthenticated VPN software

Categories

Nominet Suffers Cyberattack via Ivanti Zero-Day Vulnerability

Also Read

Banshee Malware Targets macOS Users, Evades Detection by Mimicking Apple's XProtect

DDoS Attacks Target 46 Japanese Companies and Organizations

Nominet Suffers Cyberattack via Ivanti Zero-Day Vulnerability

Hackers Exploit Aviatrix Controller Vulnerability to Deploy Malware

Critical Vulnerabilities in Palo Alto Networks' Expedition Tool Demand Immediate Attention

Japan Faces Prolonged Cyber-Attacks Linked to China's MirrorFace

Hong Kong Releases Draft Law to Bolster Cybersecurity for Critical Infrastructures

India Plans to Implement Trusted Source Rules in Power Sector

Ivanti Faces New Zero-Day Exploits Linked to Nation-State Actors

Subscribe To Our Newsletter.