The latest update on RESURGE malware from Cybersecurity and Infrastructure Security Agency (CISA) signals a concerning reality for network defenders: stealth-focused malware is becoming harder to detect and easier to maintain inside enterprise infrastructure.

In its updated CISA malware analysis report, the agency revealed that malware can remain dormant for long periods on compromised Ivanti Connect Secure devices, activating only when attackers attempt remote access.

This dormant behavior increases the risk level because organizations may believe their systems are clean while the threat remains quietly embedded in the network.

The updated findings build on the original March 2025 ...