The US cybersecurity agency added another BeyondTrust vulnerability to its known exploited vulnerabilities catalog.

CISA tagged a vulnerability in BeyondTrust's Privileged Remote Access (PRA) and Remote Support (RS) as actively exploited in ...

suspended those instances and revoked the compromised API key. “Our initial investigation has found that no BeyondTrust products outside of Remote Support SaaS are impacted,” the company said ...

CISA added two bugs found in BeyondTrust products Both were seen in the wild in December 2024 Federal agencies have until ...

BeyondTrust says it spotted an attack in early December 2024 It found some of its Remote Support SaaS instances were compromised It also found and patched two zero-day flaws BeyondTrust has ...

In a letter to lawmakers seen by The Verge, the Treasury Department said BeyondTrust, the company behind its remote management software, notified the agency of a breach on December 8th.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a second security flaw impacting BeyondTrust ...

The hackers stole a key from a third-party software service provider, BeyondTrust, and used it to override security and gain access to Treasury Department workstations, according to the letter ...

After BeyondTrust detected the breach, they shut down all compromised instances and revoked the stolen API key ... and phone calls of targeted individuals, and to access wiretap information ...

Attackers have been exploiting a second vulnerability in BeyondTrust’s remote management solutions, CISA warns.

used a stolen Remote Support SaaS API key to compromise a BeyondTrust instance. Silk Typhoon is perhaps best known for targeting some 68,500 servers in early 2021 using Microsoft Exchange Server ...