CISA has tagged a command injection vulnerability (CVE-2024-12686) in BeyondTrust's Privileged Remote Access (PRA) and Remote Support (RS) as actively exploited in attacks. As mandated by the ...

In late December 2024, BeyondTrust confirmed suffering a cyberattack after spotting and uncovering some of its Remote Support SaaS instances were compromised. Subsequent investigation uncovered ...

Evidently, the U.S. Treasury cyberattack was related to the Treasury’s use of BeyondTrust, a cloud-based service used to provide remote technical support for Treasury offices. The incident is ...

Chinese hackers who recently broke into U.S. Treasury Department computers gained access through an Atlanta-area software firm's tools, the department told lawmakers this week. Chinese hackers who ...

The breach, which occurred in early December 2024, exploited a vulnerability in BeyondTrust's remote support product. According to a letter the department sent to lawmakers that was seen by ...

The US security authority CISA warns of attacks on remote access software from BeyondTrust and the data analysis solution Qlik Sense Enterprise. In the latter case, remote attacks are possible ...

BeyondTrust said it identified a security incident that took place on December 2 involving its Remote Support product and notified the “limited number” of customers involved after the company ...

The China-linked breach is tied to the compromise of BeyondTrust’s remote support tool and reportedly led to the breach of multiple offices within the Treasury Department. New details have ...

“BeyondTrust notified the limited number of customers who were involved, and it has been working to support those customers since then.” The intrusion seems to be part of long-running Chinese ...

The attackers exploited vulnerabilities in remote tech support software provided by the identity and access management firm BeyondTrust, and Treasury said in its letter to lawmakers that “the ...

The US Treasury Department suffered a “major” security incident after a China state-sponsored hacker broke into the third-party remote management software it uses, as reported earlier by The ...

Threat actors entered Treasury Department systems through BeyondTrust. The breach may ... based service used to remotely provide technical support for Treasury Departmental Offices (DO) end ...