Threat intelligence observations show that a single threat actor is responsible for most of the active exploitation of two ...

Ivanti has finally begun patching a pair of zero-day security vulnerabilities disclosed on Jan. 10 in its Connect Secure VPN appliances. However, it also announced two additional bugs today in the ...

The European Commission and government agencies in Finland and the Netherlands have suffered potentially related breaches ...

Security teams tracking exploitation attempts against Ivanti Endpoint Manager Mobile (EPMM) are increasingly running into a ...

Ivanti EPMM zero-day flaws enabled cyberattacks on Dutch, EU, and Finnish government systems, exposing employee contact and device data.

Security teams across the globe are tracking a surge in exploitation activity aimed at Ivanti Endpoint Manager Mobile (EPMM), a ...

Ivanti has disclosed two critical vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM), tracked as CVE-2026-1281 and CVE-2026-1340, that were exploited in zero-day attacks. The flaws are ...

Security researchers warn that the initial threat activity was highly targeted, as a limited number of users were impacted prior to disclosure.

The code injection flaws allow for unauthenticated remote code execution on Ivanti Endpoint Manager Mobile deployments, but also endanger connected Ivanti Sentry mobile traffic gateways.

Thousands of Ivanti VPN instances have been compromised across the globe in the last five days thanks to two serious, as yet unpatched zero-day vulnerabilities disclosed last week. Ivanti Connect ...