Jan 9, 2025 · Ivanti reports zero-day exploitation of Connect Secure vulnerability Mandiant, which is collaborating with Ivanti on the investigation, revealed that attackers exploited CVE-2025-0282 to …

Jan 9, 2025 · Mandiant says a Chinese cyberespionage group has been exploiting the critical-rated vulnerability since at least mid-December.

Oct 18, 2024 · Zero-days, software defects that were exploited before vendors released patches, accounted for 62% of actively exploited vulnerabilities tracked by Mandiant in 2021 and 2022. “We …

Jun 2, 2023 · Mandiant has observed wide exploitation of a zero-day vulnerability in the MOVEit Transfer secure managed file transfer software for subsequent data theft. This vulnerability was …

Apr 23, 2025 · Research Attackers hit security device defects hard in 2024 Mandiant said exploits were the most common initial access vector last year, linking software defects to 1 in 3 attacks. The most …

Jan 9, 2025 · A newly publicized vulnerability in popular products from tech company Ivanti is being exploited by China-based espionage threat actors, according to Google-owned cybersecurity firm …

Oct 23, 2024 · It only takes five days on average for attackers to exploit a vulnerability, according to a new report by cybersecurity company Mandiant.

Jan 9, 2025 · Researchers at Google Cloud-owned Mandiant say that the exploitation of a critical Ivanti Connect Secure vulnerability began in December 2024 and may be connected to a China-based …

Jan 9, 2025 · According to cybersecurity company Mandiant (now part of Google Cloud), attackers started leveraging the vulnerability since mid-December and used the custom Spawn malware toolkit.

Apr 3, 2025 · Ivanti customers are confronting another string of attacks linked to an actively exploited vulnerability in the company’s VPN products. Mandiant said a nation-state backed espionage group …