CISA Warns of RESURGE Malware Targeting Ivanti Devices

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) disclosed details about RESURGE, a malicious implant used in zero-day attacks targeting Ivanti Connect Secure devices. The malware exploits CVE-2025-0282 to compromise vulnerable systems. RESURGE is capable of remaining dormant on infected devices, though specific persistence mechanisms or triggers were not detailed. The notice focuses on Ivanti devices as the primary target of these attacks. No exact timeline or attribution for the threat actors was provided in the report.