Ivanti and Fortinet spent the last year proving the remote-access appliance is the soft target. Here is how we cut an agency over to identity-aware access with no downtime window.
Draft outline · Security lensIn January 2025 CISA tied Ivanti Connect Secure CVE-2025-0282 (unauthenticated remote code execution) to active exploitation and the RESURGE malware chain, and FortiOS SSL VPN authentication-bypass flaws were exploited through the year. The pattern is consistent: an internet-facing appliance with a pre-auth listener and no identity in the path.
Government primary source confirming CVE-2025-0282 was actively exploited, with the RESURGE malware linkage.
Independent technical reporting on the 2025 run of VPN and edge-device zero-days and how the exploit chains work.
This is the front door for Managed Network Edge and the clearest example of our positioning: we do not sell a strategy document about zero trust, we deploy the access path and retire the appliance, at a fixed price, with the migration risk owned by us. It also lets us be candid where a vendor would not: patching alone is a losing race against pre-auth zero-days, and we say so.