Highly-resourced hackers are actively exploiting a vulnerability (CVE-2025-0283) in Ivanti VPNs, enabling them to gain control over networked devices. The flaw allows the hackers to execute malicious code without authentication. Ivanti has released a security patch addressing the issue. The attackers are using sophisticated malware called PHASEJAM and DRYHOOK, which even simulate a convincing upgrade process. A third malware, SPAWNANT, disables Ivanti’s integrity checker tool for unauthorized file additions.
Only 10 percent of Fortune 500 healthcare companies score A for cybersecurity
The healthcare sector is highly susceptible to cyberattacks, with 85% of Fortune 500 healthcare companies rated D or F for cybersecurity by Cybernews. Only 10%
