Ivanti has disclosed two severe vulnerabilities affecting its Connect Secure VPN appliances. The vulnerabilities have raised concerns due to potential network breaches. One of these, CVE-2025-0282, is being actively exploited and enables remote code execution without authentication. Mandiant, a cybersecurity firm, has identified various malware families associated with this exploitation. While one of the malware, SPAWN, has been linked to Chinese actor UNC5337, attribution for all activity related to the vulnerability is yet to be confirmed.
Labcorp to manage NJ system’s lab operations
Labcorp has entered an agreement to manage Inspira Health’s hospital laboratories in Vineland, Elmer, and Mullica Hill, handling staffing, supply chain services, and technical support.
