A former healthcare employee is being investigated after medical records were discovered in their home. It has not been made clear how they gained possession of such materials or what they intended to do with them.

Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457)
A suspected Chinese advanced persistent threat (APT) group exploited CVE-2025-22457, a previously unexploitable buffer overflow bug, to compromise devices running Ivanti Connect Secure (ICS) and