In a recent development, the SPAWNCHIMERA malware family has been identified exploiting the buffer overflow vulnerability CVE-2025-0282 in Ivanti Connect Secure, as confirmed by JPCERT/CC.
This vulnerability, disclosed in January 2025, had already been actively exploited since late December 2024, prior to its public announcement.
https://gbhackers.com/spawnchimera-malw ... erability/