Ivanti Zero-Day Vulnerabilities Actively Exploited Since July 2025

Security researchers observed active exploitation of Ivanti zero-day vulnerabilities, with attacks traced back to July 2025. Threat actors leveraged these flaws to deploy shells, perform reconnaissance, and download malware. The incidents involve unpatched Ivanti systems, though specific products or versions were not detailed. No attribution to particular threat groups was provided. The attacks highlight ongoing targeting of enterprise software vulnerabilities for initial access and post-exploitation activities.