International intelligence agencies raise the alarm on fast flux

The NSA and its partners want organizations to protect themselves against the technique, which can be tough to spot.

The post International intelligence agencies raise the alarm on fast flux appeared first on CyberScoop.

Continue reading International intelligence agencies raise the alarm on fast flux

Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457)

A suspected Chinese APT group has exploited CVE-2025-22457 – a buffer overflow bug that was previously thought not to be exploitable – to compromise appliances running Ivanti Connect Secure (ICS) 22.7R2.5 or earlier or Pulse Connect Secure … Continue reading Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457)

Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware

Microsoft is warning of several phishing campaigns that are leveraging tax-related themes to deploy malware and steal credentials.
“These campaigns notably use redirection methods such as URL shorteners and QR codes contained in malicious attachments a… Continue reading Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware

Posted in Uncategorized

Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN Appliances 

Ivanti misdiagnoses a remote code execution vulnerability and Mandiant reports that Chinese hackers are launching in-the-wild exploits.
The post Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN Appliances  appeared first on SecurityWeek.
Continue reading Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN Appliances