Ivanti Faces New Zero-Day Exploits Linked to Nation-State Actors

Monday, 15 December

Monday, 15 December, 2025

Ivanti Faces New Zero-Day Exploits Linked to Nation-State Actors

Ivanti has disclosed a critical zero-day vulnerability, CVE-2025-0282, affecting multiple products, including Connect Secure. Exploited since mid-December 2024, this flaw allows unauthenticated remote code execution, potentially compromising entire networks. Mandiant attributes the attacks to a China-nexus group, UNC5337, possibly linked to previous Ivanti exploits. Ivanti has released patches and urges immediate updates to mitigate risks.

Read full story at Cybersecurity News

Tags:Networks vulnerability execution

Download the TechShots App

IT Trends Move Fast. Stay Faster.

Android iOS

Categories

Ivanti Faces New Zero-Day Exploits Linked to Nation-State Actors

Also Read

AI Agent ARTEMIS Outperforms Human Hackers in Stanford Test

Empire 6.3.0 Released with Advanced Red Team Features

Parliament Takes Notice of Power Grid Cybersecurity Threats

Juice Jacking Alert: Protect Your Phone from Public USB Threats

AI Cyber Agent ARTEMIS Outperforms Human Hackers at Stanford

NY Governor Urged to Sign Landmark AI Safety Law

Urgent Zero-Day Fixes: Apple and Google Rush Emergency Security Patches

Security Flaw Exposes Thousands of Photo Booth Customer Pictures

Banks Revert to Physical KYC Amid Surging Digital Fraud

Download the TechShots App

Subscribe To Our Newsletter.