Tag: BeyondTrust

  • The Register: Critical PostgreSQL bug tied to zero-day attack on US Treasury

    Source URL: https://www.theregister.com/2025/02/14/postgresql_bug_treasury/ Source: The Register Title: Critical PostgreSQL bug tied to zero-day attack on US Treasury Feedly Summary: High-complexity bug unearthed by infoseccers, as Rapid7 probes exploit further A high-severity SQL injection bug in the PostgreSQL interactive tool was exploited alongside the zero-day used to break into the US Treasury in December, researchers say.……

  • CSA: BeyondTrust Breach: We Need Remote Access Security

    Source URL: https://cloudsecurityalliance.org/blog/2025/02/07/beyondtrust-breach-a-wake-up-call-for-remote-access-security Source: CSA Title: BeyondTrust Breach: We Need Remote Access Security Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a recent security incident involving BeyondTrust and the US Treasury Department, emphasizing vulnerabilities in traditional remote access solutions. It advocates for adopting proactive security measures such as the principle of least…

  • Alerts: CISA Adds Two Known Exploited Vulnerabilities to Catalog

    Source URL: https://www.cisa.gov/news-events/alerts/2025/01/13/cisa-adds-two-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Two Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-12686 BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) OS Command Injection Vulnerability CVE-2024-48365 Qlik Sense HTTP Tunneling Vulnerability These types of vulnerabilities…

  • Wired: Apple May Owe You $20 in a Siri Privacy Lawsuit Settlement

    Source URL: https://www.wired.com/story/apple-95-million-siri-privacy-lawsuit/ Source: Wired Title: Apple May Owe You $20 in a Siri Privacy Lawsuit Settlement Feedly Summary: Plus: The FBI discovers a historic trove of homemade explosives, new details emerge in China’s hack of the US Treasury Department, and more. AI Summary and Description: Yes Summary: The text discusses a series of significant…

  • The Register: Chinese cyber-spies reportedly targeted sanctions intel in US Treasury raid

    Source URL: https://www.theregister.com/2025/01/02/chinese_spies_targeted_sanctions_intel/ Source: The Register Title: Chinese cyber-spies reportedly targeted sanctions intel in US Treasury raid Feedly Summary: OFAC, Office of the Treasury Secretary feared hit in data-snarfing swoop Chinese spies who compromised the US Treasury Department’s workstations reportedly stole data belonging to a government office responsible for sanctions against organizations and individuals.… AI…

  • The Register: US Treasury Department outs the blast radius of BeyondTrust’s key leak

    Source URL: https://www.theregister.com/2024/12/31/us_treasury_department_hacked/ Source: The Register Title: US Treasury Department outs the blast radius of BeyondTrust’s key leak Feedly Summary: Data pilfered as miscreants roamed affected workstations The US Department of the Treasury has admitted that miscreants were in its systems, accessing documents in what has been called a “major incident."… AI Summary and Description:…