Tag: phasejam

1 Attack Reports | 0 Vulnerabilities

Attack reports

Ivanti Connect Secure VPN Targeted in New Zero-Day Exploitation

A new zero-day vulnerability, CVE-2025-0282, in Ivanti Connect Secure VPN appliances has been exploited since mid-December 2024. The vulnerability allows unauthenticated remote code execution. Attackers have deployed multiple malware families, including SPAWN, DRYHOOK, and PHASEJAM, to maintain per…
credential theft
ivanti
vpn
2025-01-09
phasejam
dryhook
spawnsloth
spawnant
Published: January 9, 2025
Linked vulnerabilities : CVE-2025-0282 (CVSS 9.0), CVE-2025-0283 (CVSS 7.0), CVE-2024-21887, CVE-2023-46805
Downloadable IOCs: 7
Click here to see more Attack Reports