Major Vulnerabilities Patched in SonicWall, Palo Alto Expedition, and Aviatrix Controllers

New Banshee Stealer Variant Bypasses Antivirus with Apple’s XProtect-Inspired Encryption

Product Review: How Reco Discovers Shadow AI in SaaS

Webinar: Learn How to Stop Encrypted Attacks Before They Cost You Millions

 MirrorFace Leverages ANEL and NOOPDOOR in Multi-Year Cyberattacks on Japan

Ivanti is warning that a critical security flaw impacting Ivanti Connect Secure, Policy Secure, and ZTA Gateways has come under active exploitation in the wild beginning mid-December 2024.
The security vulnerability in question is CVE-2025-0282 (CVSS score: 9.0), a stack-based buffer overflow that affects Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2

Headline

Ivanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy Secure

The Hacker News: Latest News