China-Linked APT Group UNC5221 Exploits Ivanti EPMM Vulnerabilities

The China-linked APT group UNC5221 has begun exploiting vulnerabilities in Ivanti EPMM shortly after their disclosure. According to EclecticIQ, this group has chained two vulnerabilities, CVE-2025-4427 and CVE-2025-4428, to target organizations in Europe, North America, and the Asia-Pacific region. The attacks are aimed at critical sectors, but the specific impacts are not detailed in the article.