The botnet began in early 2025, targeting software developers across the open-source supply chain.
Related Articles
All CyberSecurityDive →
Nearly 3K Ivanti Connect Secure instances vulnerable to critical flaw
Dive Brief: Approximately 2,850 IP addresses are vulnerable to CVE-2025-22467, a critical stack buffer-overflow vulnerability that affects Ivanti Connect Secure VPNs, according to a post…
Suspected contractor for China’s Hafnium group arrested in in Italy
Italian authorities and FBI agents have arrested a Chinese man who allegedly helped Beijing’s Hafnium group conduct a series of high-profile cyberattacks in 2020 and…
CISOs band together to urge world governments to harmonize cyber rules
A letter from the CISOs of 45 powerful global companies could provide crucial backing for world governments looking to reduce cybersecurity regulations and their accompanying…
CISA: 3 Ivanti endpoint vulnerabilities exploited in the wild
Three critical vulnerabilities in Ivanti Endpoint Manager (EPM) are currently under active exploitation in the wild, according to the Cybersecurity and Infrastructure Security Agency (CISA).…
Passwordless authentication: Where security meets productivity
According to Verizon’s 2024 Data Breach Investigations Report, 80% of breaches stem from compromised credentials. While passwords were meant to protect us, they’ve instead become…
Trump administration under scrutiny as it puts major round of CISA cuts on the table
The Trump administration is facing renewed scrutiny from Congress and other officials following reports that massive job cuts are coming to the Cybersecurity and Infrastructure…