Ivanti

Chinese state-sponsored group RedNovember exploited enterprise network gear in global campaign, researchers say

Cybercrime, News, Research, Risk, Vulnerabilities

September 29, 2025

Recorded Future says a Chinese state-sponsored group called RedNovember ran a global espionage campaign from June 2024 to July 2025, exploiting vulnerabilities in enterprise network appliances to breach defense contractors, government agencies and other organizations and using publicly available tools to maintain persistent access.
Chinese Cyber Spies Exploit Ivanti EPMM Flaws to Target EU and US Organizations

Cybercrime, News, Risk, Vulnerabilities

May 24, 2025

A Chinese cyber espionage group has been exploiting critical vulnerabilities in Ivanti’s software to breach various organizations across Europe and the United States, raising alarms over the potential security risks. The two vulnerabilities, CVE-2025-4427 and CVE-2025-4428, have enabled attackers to gain unauthorized access to sensitive data and systems.
Increase in Government-Backed Zero-Day Hacks Targeting Enterprises Revealed

Cybercrime, News, Privacy, Risk, Vendors, Vulnerabilities

April 30, 2025

A recent report highlights a disturbing rise in government-backed zero-day hacks targeting enterprise systems, with the largest share of vulnerabilities aimed at significant corporations such as Microsoft and Google. Experts urge enterprises to improve security measures as attacks are expected to increase.