A survey by cybersecurity firm VikingCloud reveals that 40% of cybersecurity professionals across industries and 30% specifically within healthcare haven’t reported some breaches for fear of losing their jobs. The research also found that 66% of healthcare cybersecurity staff doubted their organizations’ ability to comply with SEC requirements to disclose cybersecurity incidents within four business days. Furthermore, over 50% of these professionals believe they are lagging behind cybercriminals and ransomware groups in terms of capabilities.
Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457)
A suspected Chinese advanced persistent threat (APT) group exploited CVE-2025-22457, a previously unexploitable buffer overflow bug, to compromise devices running Ivanti Connect Secure (ICS) and
