The US Justice Department has seized 13 websites that offer distributed denial-of-service attacks for hire, with 10 of the sites being reincarnations of services restricted in a December crackdown. The move is part of Operation PowerOFF, a global initiative aimed at eradicating the sites. The owners of four of the websites have pleaded guilty to charges, having been prosecuted in December.

Mandiant warns of attacks on newly-disclosed Ivanti remote takeover threat
Google’s Mandiant team has issued an alert about a remote code execution flaw in the Ivanti Connect Secure VPN platform. The vulnerability, designated CVE-2025-22457, is