It's time to phase out the "patch and pray" approach, eliminate needless public interfaces, and enforce authentication ...

Learn how CVE-2026-1281 and CVE-2026-1340 enable pre-auth RCE in Ivanti EPMM, now actively exploited, and how AppTrana helps block attacks across applications. The post CVE-2026-1281 & CVE-2026-1340: ...

The European Commission and government agencies in Finland and the Netherlands have suffered potentially related breaches ...

This week, Italy blocked Russian cyberattacks targeting the Olympics. Flaws in SolarWinds, Ivanti and Microsoft Office.

The Dutch Data Protection Authority (DPA) is involved in a security incident in which an unauthorized party accessed employee ...

Two code injection vulnerabilities allowed unauthenticated attackers to execute arbitrary code and access sensitive device information across compromised networks. Ivanti released emergency patches ...

The breach comes soon after the Commission proposed new cybersecurity legislation to strengthen defenses against state-backed and cybercrime groups targeting critical infrastructure.

Threat intelligence observations show that a single threat actor is responsible for most of the active exploitation of two ...

Ivanti has patched a dozen vulnerabilities in Endpoint Manager, including a new high-severity bug leading to credential exposure.

“There is no direct attribution associated with the source IPs, though the activity is consistent with known malicious ...

The code injection flaws allow for unauthenticated remote code execution on Ivanti Endpoint Manager Mobile deployments, but also endanger connected Ivanti Sentry mobile traffic gateways.