Techly NewsGet the app

Get the latest tech news

Ivanti VPN zero-day implicated in Nominet hack


Investigation into the incident is still underway but Nominet, which is among the major country code registries, was reported by ISPreview to not have determined any proof of backdoor injections.

Investigation into the incident is still underway but Nominet, which is among the major country code registries, was reported by ISPreview to not have determined any proof of backdoor injections. Additional details regarding the vulnerability were not provided by Nominet but active exploitation of the Connect Secure zero-day, tracked as CVE-2025-0282, has been confirmed by Ivanti last week. Initial intrusions targeting Ivanti Connect Secure appliances impacted by CVE-2025-0282 facilitated the Spawn malware toolkit associated with the China-nexus cyberespionage operation UNC5337 before proceeding with the deployment of the newly emergent Phasejam and Dryhook payloads, according to Mandiant researchers.

Get the Android app

Or read this on r/technology

Read more on:

Photo of Ivanti VPN zero-day

Ivanti VPN zero-day

Photo of Nominet

Nominet

Photo of Nominet hack

Nominet hack

Related news:

News photo

UK domain giant Nominet confirms cybersecurity incident linked to Ivanti VPN hacks

News photo

Nominet probes network intrusion linked to Ivanti zero-day exploit

News photo

Ivanti zero-day attacks infected devices with custom malware

« Axios partners with OpenAI, forgetting the scorpion stung the frog
Early Iron Age horse sacrifice at a royal tomb in southern Siberia »