Researchers at Ivanti have identified two security vulnerabilities that are being exploited in its VPN appliances. The more severe of the two is being used in live attacks by multiple players, most likely led by Chinese espionage group UNC5221. The vulnerabilities are being used to deploy unknown malware and the company is urging customers to apply patches immediately.

Who’s driving ransomware’s accelerated growth in 2025
The article examines the tactics used by the Internet Advertising Bureau (IAB), their connections to ransomware groups, and the services they provide.