Today, CISA released a Malware Analysis Report detailing the functionality of two sets of malware obtained from an organization compromised by cyber threat actors exploiting CVE-2025-4427 and CVE-2025-4428 in Ivanti Endpoint Manager Mobile (Ivanti EPMM).
The Malware Analysis Report, Malicious Listener for Ivanti EPMM Systems, provides guidance to help organizations detect and mitigate these threats, including indicators of compromise and YARA and SIGMA rules. Mitigations include highlighting the need to upgrade Ivanti EPMM systems to the latest version and to treat mobile device management systems as high-value assets with strengthened monitoring and restrictions.
For more information, visit https://www.cisa.gov/news-events/analysis-reports/ar25-261a.
Systems Affected Cisco routers and switches running vulnerable versions of IOS. Vulnerable IOS versions known…
Systems Affected Systems that rely on persistent TCP connections, for example routers supporting BGP Overview…
Systems Affected Concurrent Versions System (CVS) versions prior to 1.11.16 CVS Features versions prior…
Systems Affected Oracle Applications 11.0 (all releases) Oracle E-Business Suite 11i, 11.5.1 through 11.5.8 Overview…
Systems Affected Microsoft Windows systems Overview Microsoft Internet Explorer (IE) contains a…
Systems Affected Microsoft Windows systems Overview A cross-domain vulnerability in Internet Explorer…
This website uses cookies.