BeyondTrust - Geek Feed

CISA orders agencies to patch BeyondTrust bug exploited in attacks

January 15, 2025January 15, 2025 geekfeed0Tagged Actively Exploited, BeyondTrust, bug exploited, CISA, Treasury Department

CISA has tagged a command injection vulnerability (CVE-2024-12686) in BeyondTrust’s Privileged Remote Access (PRA) and Remote Support (RS) as actively exploited in attacks. As mandated by the Binding Operational Directive (BOD) 22-01, after being added to CISA’s Known Exploited Vulnerabilities catalog, U.S. federal agencies must secure their networks against ongoing attacks targeting the flaw within three weeks […]

2 mins read

US Treasury Department breached through remote support platform

January 1, 2025January 1, 2025 geekfeed0Tagged BeyondTrust, china, Cyberattack, Data Theft, Remote Support, Treasury Department, united states, United States of America, usa

Chinese state-sponsored threat actors hacked the U.S. Treasury Department after breaching a remote support platform used by the federal agency. In a letter sent to lawmakers and seen by the New York Times, the Treasury Department warned lawmakers it was first notified of the breach on December 8th by its vendor BeyondTrust. BeyondTrust is a privileged […]

2 mins read

BeyondTrust says hackers breached Remote Support SaaS instances

December 20, 2024December 20, 2024 geekfeed0Tagged BeyondTrust, Customer Data, CVE-2024-12356, CVE-2024-12686, Remote Support, SaaS, Security Breach

Story updated with statement from BeyondTrust. Privileged access management company BeyondTrust suffered a cyberattack in early December after threat actors breached some of its Remote Support SaaS instances. BeyondTrust is a cybersecurity company specializing in Privileged Access Management (PAM) and secure remote access solutions. Their products are used by government agencies, tech firms, retail and e-commerce entities, […]

3 mins read