CRN

Ivanti: ‘Critical’ Mobile Management Vulnerabilities Seeing Exploitation

A pair of flaws affecting Ivanti’s Endpoint Manager Mobile have been exploited in attacks impacting a ‘very limited’ number of customers, the company says. A pair of critical-severity vulnerabilities ...
Bleeping Computer

Ivanti warns of two EPMM flaws exploited in zero-day attacks

Ivanti has disclosed two critical vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM), tracked as CVE-2026-1281 and CVE-2026-1340, that were exploited in zero-day attacks. The flaws are ...
Bleeping Computer

One threat actor responsible for 83% of recent Ivanti RCE attacks

Update: The article initially listed the wrong CVEs. This has now been corrected to list the CVEs: CVE-2026-1286 and CVE-2026-1340 Threat intelligence observations show that a single threat actor is ...