India, Feb. 25 -- Reports of exploitation of security flaws in Ivanti Connect Secure Virtual Private Network (VPN) appliances appear. Also, Fortinet reveals a new critical security flaw in SSL VPNs.

Cisco warns about brute-force attacks targeting various devices, including VPN services.

May 2024: TunnelVision pops. This VPN bypass technique and decloaking method allow threat actors to snoop on a victim's network traffic, tricking VPN users into believing that their connections are secured and being ferried through an encrypted tunnel.

July 2024: The Qilin ransomware attacks. This involves infiltrating the target network via compromised credentials for a VPN portal that lacks Multi-Factor Authentication (MFA).

November 2024: Security f...