Ivanti has disclosed a critical vulnerability in its Connect Secure VPN, identified as CVE-2025-0282, which is currently being exploited by hackers. The cybersecurity firm Mandiant has linked this exploit to a Chinese nation-state actor, UNC5337, indicating a targeted campaign against networks using Ivanti's software. Researchers from Mandiant reported that the flaw allows for remote takeover attacks, raising concerns about the security of affected systems. In response to the vulnerability, Ivanti has released security updates to mitigate the risks associated with CVE-2025-0282 and another vulnerability, CVE-2025-0283, affecting its Connect Secure, Policy Secure, and ZTA Gateways. The urgency of the situation is underscored by the active exploitation of these vulnerabilities by threat actors.