Chinese hackers are believed to be exploiting a zero-day flaw in Ivanti VPN devices, according to Mandiant researchers. The malware campaign was initially disclosed by Google’s Mandiant security division and includes the SPAWNANT installer, SPAWNMOLE tunneller, and SPAWNSNAIL SSH backdoor. Mandiant expects the cyber espionage, conducted by UNC5337 and UNC5221, to continue across numerous countries and sectors.

Federal firings and office closures create concerns for miners
Sweeping layoffs and federal office closures in the US are raising concerns about miner safety and health. Notably, 873 staff cuts are expected from the