New password spraying attacks target Cisco, PAN VPN gateways

An automated campaign is targeting multiple VPN platforms, with credential-based attacks being observed on Palo Alto Networks ...
Bleeping Computer

Ivanti fixes VPN gateway vulnerability allowing RCE, DoS attacks

Update 4/5/25: ShadowServer says there are 16,000 exposed devices likely vulnerable to this flaw. IT security software company Ivanti has released patches to fix multiple security vulnerabilities ...
The Hacker News

WatchGuard Warns of Active Exploitation of Critical Fireware OS VPN Vulnerability

WatchGuard fixed CVE-2025-14733, a critical Fireware OS VPN flaw with CVSS 9.3 that is actively exploited in the wild.