Chinese hackers allegedly broke into the network of an Ivanti subsidiary in 2021. The hackers exploited a backdoor in its VPN ...

Chinese state-sponsored hackers exploited flaws in Ivanti’s VPN software to breach at least 119 organizations, including the ...

In early 2024, the agency that oversees cybersecurity for much of the US government issued a rare emergency order — disconnect your Connect Secure virtual private network software immediately. Chinese ...

Palo Alto Networks’ Unit 42 says two critical flaws are being actively abused to gain unauthenticated access, deploy persistent backdoors, and compromise entire enterprise mobile fleets even after ...

A report by GreyNoise warns the IP address is operating behind bulletproof hosting infrastructure and might not show up in ...

Chinese state-sponsored hackers slipped past a U.S. government VPN by exploiting vulnerabilities in Ivanti Connect Secure and ...

“There is no direct attribution associated with the source IPs, though the activity is consistent with known malicious infrastructure that routinely scans the internet for vulnerable hosts and ...

Threat intelligence observations show that a single threat actor is responsible for most of the active exploitation of two ...

Ivanti has patched a dozen vulnerabilities in Endpoint Manager, including a new high-severity bug leading to credential exposure.

Threat intelligence firm GreyNoise said it recorded 417 exploitation sessions from 8 unique source IP addresses between February 1 and 9, 2026. An estimated 346 exploitation sessions have originated ...

It's time to phase out the "patch and pray" approach, eliminate needless public interfaces, and enforce authentication ...

Clients included the US Air Force, Army, Navy and other parts of the Defense Department, the Department of State, the Federal ...