Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/greynoise/statuses/114518471412483940">GreyNoise (greynoise@infosec.exchange)'s status on Saturday, 17-May-2025 02:40:04 JST</a><a href="https://infosec.exchange/@greynoise" title="greynoise@infosec.exchange"><img src="https://gnusocial.jp/avatar/239158-48-20240209210313.webp" width="48" height="48" alt="GreyNoise" style="position: absolute; left: 0; top: 0;">GreyNoise</a></section><article><p>Two critical Ivanti zero-days (CVE-2025-4427 + CVE-2025-4428) are now being actively exploited after a surge in scanning activity last month. Immediate patching is required. Get more details here ⬇️ <a href="https://www.greynoise.io/blog/ivanti-epmm-zero-days-reconnaissance-exploitation" rel="nofollow">https://www.greynoise.io/blog/ivanti-epmm-zero-days-reconnaissance-exploitation</a> <br><a href="https://infosec.exchange/tags/ZeroDay" rel="tag">#ZeroDay</a> <a href="https://infosec.exchange/tags/CyberSecurity" rel="tag">#CyberSecurity</a> <a href="https://infosec.exchange/tags/threatintel" rel="tag">#threatintel</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/5063799#notice-9928551">In conversation</a><time datetime="2025-05-17T02:40:04+09:00" title="Saturday, 17-May-2025 02:40:04 JST">about 13 days ago</time> <span>from <span><a href="https://infosec.exchange/@greynoise/114518471412483940" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@greynoise/114518471412483940">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/4637132">Untitled attachment</a></label><br><a href="https://media.infosec.exchange/infosec.exchange/media_attachments/files/114/518/471/220/723/020/original/c3b5c5b4674c1b28.png" rel="external">https://media.infosec.exchange/infosec.exchange/media_attachments/files/114/518/471/220/723/020/original/c3b5c5b4674c1b28.png</a></li><li><article><header><div>Domain not in remote thumbnail source whitelist: cdn.prod.website-files.com</div><h5><a href="https://www.greynoise.io/blog/ivanti-epmm-zero-days-reconnaissance-exploitation">Ivanti EPMM Zero-Days: Reconnaissance to Exploitation</a></h5><div></div></header><div>Two critical Ivanti zero-days (CVE-2025-4427 and CVE-2025-4428) are now being actively exploited after a surge in scanning activity last month. When chained together, these vulnerabilities enable unauthenticated remote code execution on Ivanti Endpoint Manager Mobile systems.</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
GreyNoise (greynoise@infosec.exchange)'s status on Saturday, 17-May-2025 02:40:04 JST GreyNoise
Two critical Ivanti zero-days (CVE-2025-4427 + CVE-2025-4428) are now being actively exploited after a surge in scanning activity last month. Immediate patching is required. Get more details here ⬇️ https://www.greynoise.io/blog/ivanti-epmm-zero-days-reconnaissance-exploitation
#ZeroDay #CyberSecurity #threatintel
In conversationabout 13 days ago from infosec.exchangepermalink
Attachments
1. Untitled attachment
  https://media.infosec.exchange/infosec.exchange/media_attachments/files/114/518/471/220/723/020/original/c3b5c5b4674c1b28.png
2. Domain not in remote thumbnail source whitelist: cdn.prod.website-files.com
  Ivanti EPMM Zero-Days: Reconnaissance to Exploitation
  Two critical Ivanti zero-days (CVE-2025-4427 and CVE-2025-4428) are now being actively exploited after a surge in scanning activity last month. When chained together, these vulnerabilities enable unauthenticated remote code execution on Ivanti Endpoint Manager Mobile systems.

Public

Embed Notice

HTML Code

Corresponding Notice