Home/Tag/Ivanti

Ivanti

5 articles tagged with "Ivanti"

Vulnerabilities4 min read

Ivanti EPM Auth Bypass Now Under Active Exploitation, CISA Warns

CVE-2026-1603 allows unauthenticated attackers to steal credential vaults from Ivanti Endpoint Manager. CISA added it to KEV catalog after exploitation detected.

Marcus ChenMar 11, 2026

Malware4 min read

CISA: RESURGE Malware Can Remain Dormant on Ivanti Devices

Updated CISA analysis reveals RESURGE implant uses advanced evasion techniques and can persist undetected on Ivanti Connect Secure devices until remote activation.

James RiveraMar 1, 2026

Vulnerabilities3 min read

Single IP Behind 83% of Ivanti EPMM Attacks, Sleepers Found

GreyNoise traces Ivanti EPMM exploitation to bulletproof hosting on PROSPERO network. Defenders find dormant webshells—signs of initial access broker activity.

Marcus ChenFeb 14, 2026

Vulnerabilities4 min read

Ivanti EPMM Zero-Days Under Attack, CISA Sets Friday Deadline

Two critical code injection flaws in Ivanti Endpoint Manager Mobile enable unauthenticated RCE. Federal agencies must remediate by February 1.

Marcus ChenJan 30, 2026

Threat Intelligence11 min read

The 10 Worst Vulnerabilities of 2025: Ranked by Real-World Impact

Beyond CVSS scores, these vulnerabilities caused the most damage in 2025—from nation-state exploitation to mass ransomware campaigns and breaches affecting millions.

Alex KowalskiJan 1, 2026