The US Cybersecurity and Infrastructure Security Agency (CISA) has released a report outlining potential vulnerabilities in the healthcare and public health sector. The report provides recommendations for improving cybersecurity, with an emphasis on hardening networks, improving software design and implementing multi-factor authentication. The vulnerability assessment highlighted several potential exploitable issues, such as weak passwords and misconfiguration, which could allow cyberattacks. CISA advocates for a “secure by design” approach to software development to limit potential vulnerabilities.

Mandiant warns of attacks on newly-disclosed Ivanti remote takeover threat
Google’s Mandiant team has issued an alert about a remote code execution flaw in the Ivanti Connect Secure VPN platform. The vulnerability, designated CVE-2025-22457, is