AppSec engineer Sean Wright warned at the All Day DevOps conference that controls need to be put in place to counter a 742% rise in next-generation supply chain attacks, which have grown rapidly since the SolarWinds incident. To protect againstattacks, companies should ensure servers are well-protected and restrict outbound access. Wright also advised security teams to pay attention to the vector of vulnerability over the severity score.

Mandiant warns of attacks on newly-disclosed Ivanti remote takeover threat
Google’s Mandiant team has issued an alert about a remote code execution flaw in the Ivanti Connect Secure VPN platform. The vulnerability, designated CVE-2025-22457, is