A significant vulnerability in Rockwell Automation software for programming logic controllers could enable cyberattackers to remotely introduce and run malicious code, potentially taking over entire production systems. The flaw could allow hackers to shut down operations, alter systems, or even cause physical damage. The US Cybersecurity and Infrastructure Security Agency recommended rapid patching of this vulnerability, recorded as CVE-2024-7847, that affects all versions of RSLogix 5, RSLogix 500, and related products.
Chinese Hackers Actively Exploiting Ivanti VPN Vulnerability to Deploy Malware
Security researchers have found a critical vulnerability (CVE-2025-22457) in Ivanti Connect Secure VPN appliances, exploited by suspected Chinese group UNC5221 since mid-March 2025. This buffer
