Credential-stealing crew spoofs VPN clients from Cisco, Fortinet, and others

And then they send victims to the legit VPN download to hide their tracks A group of cybercriminals tracked as Storm-2561 is ...
Bleeping Computer

CISA: Recently patched Ivanti EPM flaw now actively exploited

CISA flagged a high-severity Ivanti Endpoint Manager (EPM) vulnerability as actively exploited in attacks and ordered U.S. federal agencies to patch systems within three weeks. Ivanti's EPM software ...
SecurityWeek

Fortinet, Ivanti, Intel Patch High-Severity Vulnerabilities

Fortinet, Ivanti, and Intel have released fixes for dozens of vulnerabilities, including high-severity bugs leading to code ...
CSO Online

Storm-2561 targets enterprise VPN users with SEO poisoning, fake clients

The financially motivated group has been active since May 2025, impersonating Fortinet, Ivanti, Cisco, and other vendors to ...

Saviynt Names Alex Lei to Lead APJ Sales Expansion

Saviynt appoints Alex Lei as SVP of Sales APJ to drive identity security growth. Ex-Ivanti exec to lead cloud/AI security ...

My daughters are entering the workforce in the AI era. Hard work isn’t enough anymore

The "first one in, last one out" formula built careers for decades. As a CEO, I see that my daughters will need something ...
CSO Online

CISA warns of actively exploited Ivanti EPM and Cisco SD-WAN flaws

Patched vulnerabilities in Ivanti Endpoint Manager and Cisco Catalyst SD-WAN are under attack, according to the US security agency, which added reporting requirements to its previous Cisco directive.
The Hacker News

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials

Storm-2561 spreads fake VPN installers via SEO poisoning and GitHub downloads, stealing enterprise VPN credentials with Hyrax ...
CPO Magazine

Marquis Cyber Attack Affected Over 672,000, Akira Ransomware Gang Exonerated

The sensitive personal and financial information of 672,075 people was compromised during the August 2025 Marquis cyberattack ...

35th Annual RSAC Conference Opens Flagship Event in San Francisco on Monday

RSA Conference LLC ("RSAC"), the premier global platform for the cybersecurity community and host of the world's largest and most influential cybersecurity conference, opens its annual flagship event ...