BeyondTrust breach impacted 17 SaaS customers via compromised API key linked to Silk Typhoon; U.S. Treasury affected.

The US Cybersecurity and Infrastructure Security Agency (CISA) has added to its catalog of known exploited vulnerabilities a second vulnerability by BeyondTrust, which was patched in December.

CISA added two bugs found in BeyondTrust products Both were seen in the wild in December 2024 Federal agencies have until February 3, 2025 to patch up The US Cybersecurity and Infrastructure ...

CISA has tagged a command injection vulnerability (CVE-2024-12686) in BeyondTrust's Privileged Remote Access (PRA) and Remote Support (RS) as actively exploited in attacks. As mandated by the ...

The U.S. cyber watchdog agency CISA said on Monday there was "no indication" the ... had been compromised by Chinese hackers following a breach at contractor BeyondTrust, which provides cybersecurity ...

CISA said in a statement Monday that it is “working closely” with both the Treasury and BeyondTrust to “understand and mitigate the impacts” of the breach. “The security of federal ...

From a new White House executive order on cyber to a blog from the outgoing CISA director to more scary details on the ...

CISA has added the JQuery flaw CVE-2020-11023, previously linked to APT1, to its Known Exploited Vulnerabilities (KEV) catalog.

CISA released 11 advisories for serious vulnerabilities in industrial control systems products from Schneider Electric, ...

The US Cybersecurity and Infrastructure Security Agency (CISA) has added two recently-discovered BeyondTrust bugs to its Known Exploited Vulnerabilities (KEV) catalog. The move means CISA has seen ...

The U.S. cyber watchdog agency CISA said on Monday there was "no ... by Chinese hackers following a breach at contractor BeyondTrust, which provides cybersecurity services.