Tag: CVE-2025-4427

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about two distinct malware frameworks uncovered within the network of an unnamed organization, following the exploitation of newly disclosed vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM). The attackers leveraged CVE-2025-4427 and CVE-2025-4428, both actively exploited as zero-days before Ivanti released patches in May…