Cybersecurity analysts are alerting about a new malicious software known as DslogdRAT, which gets deployed after the exploitation of a recently fixed security weakness in Ivanti Connect Secure (ICS). The malware, in conjunction with a web shell, was “implemented by taking advantage of a zero-day flaw at that moment, CVE-2025-0282, during assaults on entities in Japan around December 2024,” stated JPCERT/CC investigator Yuma.