The Register: Ivanti EPMM holes let miscreants plant shady listeners, CISA says

Sep 19, 2025

—

Source URL: https://www.theregister.com/2025/09/19/cisa_ivanti_bugs_exploited/
Source: The Register
Title: Ivanti EPMM holes let miscreants plant shady listeners, CISA says

Feedly Summary: Unnamed org compromised with two malware sets
An unknown attacker has abused a couple of flaws in Ivanti Endpoint Manager Mobile (EPMM) and deployed two sets of malware against an unnamed organization, according to the US Cybersecurity and Infrastructure Security Agency.…

AI Summary and Description: Yes

Summary: The incident involving an unnamed organization being compromised through vulnerabilities in Ivanti Endpoint Manager Mobile highlights critical concerns in information security, particularly regarding malware deployment and the exploitation of software flaws.

Detailed Description: This text outlines a cybersecurity incident in which an unidentified organization has been targeted by an attacker exploiting vulnerabilities in the Ivanti Endpoint Manager Mobile (EPMM). The attack involved deploying two different malware sets, indicating a coordinated effort that emphasizes the importance of proactive security measures and software security standards.

– **Attack Vector**: Exploitation of flaws in Ivanti Endpoint Manager Mobile.
– **Malware Deployment**: The attacker used two distinct sets of malware, suggesting multiple objectives or capabilities.
– **Unknown Organization**: The lack of identification of the affected organization underlines the risk and prevalence of such attacks across various sectors.
– **CISA Involvement**: The notification by the US Cybersecurity and Infrastructure Security Agency suggests the incident may involve critical infrastructure or sectors of interest to national security.

This incident serves as a reminder for security professionals to maintain robust software security protocols, ensure timely patch management, and continuously monitor for vulnerabilities in their environments. It also highlights the necessity of adhering to compliance standards that govern the protection of sensitive data and maintaining infrastructure integrity against evolving cyber threats.

1 2 2025 5 a abuse Act age Agency AI and anti art as at ated attack attack vector attacker attacks AWS being Bi Bug bugs by C capabilities CERN CI CISA co Col compliance compliance standards compromised concerns continuous critical critical infrastructure cross cyber cyber threat cyber threats cybersecurit Cybersecurity Cybersecurity and Infrastructure Security Agency cybersecurity incident D data de deployment e end endpoint endpoint manager environment environments exp exploit Exploitation flaws for g Gen GIS Go gs H high Highlight HR http HTTPS in incident information information security infrastructure infrastructure integrity infrastructure security integrity inter io Iron ite Ivanti Ivanti Endpoint Manager J k l law led Li line M malware malware deployment man management measures Mobile Monitor multi N nation national security no o of on organization oS oss out over Patch Patch Management point pre pro proactive proactive security proactive security measures professionals protection protocol protocols ps R RCE re Risk Ro RoT s sec sector security security incident security measure security measures security professionals security protocols security standards sensitive data SHA size sizes software software flaw software flaws software security source standards T target targeted ted text the threat threats Time to Tor TP two under up US use V val vector vulnerabilities Ware Wi x z