beyondtrust News Articles
Recent news articles refferecing the vendors vulnerabilities.
TecheratiSerious PostgreSQL flaw exploited in US Treasury zero-day attack - Techerati
Researchers believe a zero-day weakness in PostgreSQL played a major role in hacks that were able to successfully breach the US Treasury.
PostgreSQL flaw exploited as zero-day in BeyondTrust breach
Rapid7's vulnerability research team says attackers exploited a PostgreSQL security flaw as a zero-day to breach the network of privileged access management company BeyondTrust in December.
Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation
Rapid7 finds a new zero-day vulnerability in PostgreSQL and links it to chain of attacks against a BeyondTrust Remote Support product.
CSO OnlinePostgreSQL patches SQLi vulnerability likely exploited in BeyondTrust attacks
Rapid7 researchers believe the BeyondTrust Remote Support attacks from December also exploited a zero-day flaw in PostgreSQL.
CISA: BeyondTrust flaw CVE-2024-12686 exploited in the wild | TechT...
A second BeyondTrust vulnerability, CVE-2024-12686, has been added to CISA's Known Exploited Vulnerabilities catalog in the past month.
The Hacker NewsCVE-2024-12686CISA Adds Second BeyondTrust Flaw to KEV Catalog Amid Active Attacks
CISA adds BeyondTrust CVE-2024-12686 to KEV catalog; Treasury breach linked to Silk Typhoon exploits.
CISA orders agencies to patch BeyondTrust bug exploited in attacks
CISA tagged a vulnerability in BeyondTrust's Privileged Remote Access (PRA) and Remote Support (RS) as actively exploited in attacks, ordering agencies to secure their systems within three weeks.
GBHackers NewsCVE-2024-12356US Treasury Department Breach, Hackers Accessed Workstations
The Biden administration confirmed that a Chinese state-sponsored hacking group breached the U.S. Treasury Department.
The Hacker NewsCVE-2024-12356Chinese APT Exploits BeyondTrust API Key to Access U.S. Treasury Systems and Documents
U.S. Treasury breached by Chinese APT actors via BeyondTrust API key; critical CVE-2024-12356 exploited.
GBHackers NewsCVE-2024-12356CISA Warns of BeyondTrust Privileged Remote Access Exploited in Wild
CISA has sounded the alarm over a critical vulnerability impacting BeyondTrust’s Privileged Remote Access (PRA) and Remote Support (RS) products.
The Hacker NewsCVE-2024-12356CISA Adds Critical Flaw in BeyondTrust Software to Exploited Vulnerabilities List
CISA lists CVE-2024-12356, a critical BeyondTrust flaw, as actively exploited. Update on-prem systems to patch vulnerabilities.
CISA Urges Immediate Patching of Exploited BeyondTrust Vulnerability
CISA is urging federal agencies to patch a recent critical vulnerability in BeyondTrust remote access products in one week.
Help Net SecurityCVE-2024-12356BeyondTrust fixes critical vulnerability in remote access, support solutions (CVE-2024-12356) - Help Net Security
BeyondTrust has fixed a critical command injection vulnerability (CVE-2024-12356) in Privileged Remote Access (PRA) and Remote Support (RS).
BeyondTrust Patches Critical Vulnerability Discovered During Security Incident Probe
A critical vulnerability in BeyondTrust Privileged Remote Access and Remote Support could lead to arbitrary command execution.