Researchers Identify New DslogdRAT Malware Exploiting Ivanti Connect Secure Vulnerability

Researchers have identified a new malware, named DslogdRAT, deployed after exploiting a now-patched vulnerability in Ivanti Connect Secure (ICS). According to researchers from JPCERT/CC, this malware and a web shell were used to exploit a zero-day vulnerability during attacks against Japanese organizations in December 2024. The vulnerability, listed as CVE-2025-0282, has a CVSS score of 9.0.