News

JD Supra6d
CISA Issues Malware Analysis Report on RESURGE Malware
On March 28, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) released a Malware Analysis Report (MAR) on RESURGE malware, which ...
The Hacker News3d
Critical Ivanti Flaw Actively Exploited to Deploy TRAILBLAZE and BRUSHFIRE Malware
Ivanti patches CVE-2025-22457 exploited by UNC5221 in March 2025, risking remote code execution and credential theft.
The Hacker News2d
The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has shed light on a new malware called RESURGE that has been deployed as part of exploitation activity targeting a now-patched security ...
Yahoo Finance3d
CISA adds Ivanti Connect Secure vulnerability to KEV catalog
CISA on Friday added CVE-2025-22457, a critical stack-based buffer-overflow flaw that affects several Ivanti products, to the agency's known exploited vulnerabilities catalog. Ivanti disclosed it ...
Only classified as a bug: Critical security vulnerability in Ivanti ICS attacked
Ivanti has misjudged a bug in the VPN software Connect Secure. This is a security vulnerability that is under attack.
SecurityWeek2d
Exploited Vulnerability Puts 5,000 Ivanti VPN Appliances at Risk
More than 5,000 Ivanti Connect Secure appliances are vulnerable to attacks exploiting CVE-2025-22457, which has been used by ...
CRN5d
CISA Urges Patching For ‘Critical’ Ivanti VPN Flaw Exploited In Attacks
The group, UNC5221, is believed to have compromised thousands of Ivanti VPN devices during the wave of 2024 attacks, with the list of victims including CISA. In the latest attacks targeting Ivanti ...
CBS News5d
Cybersecurity agency that oversees election infrastructure to face significant cuts, sources say
CISA employed nearly 3,400 people as of the most recent data. CISA is part of the Department of Homeland Security and manages risks to the country's cyber and physical infrastructure, such as the ...