BeyondTrust says it spotted an attack in early December 2024 It found some of its Remote Support SaaS instances were compromised It also found and patched two zero-day flaws BeyondTrust has ...

Updated Silk Typhoon, the Chinese government crew believed to be behind the December US Treasury intrusions, has been abusing ...

Rapid7's vulnerability research team says attackers exploited a PostgreSQL security flaw as a zero-day to breach the network of privileged access management company BeyondTrust in December.

The China-linked breach is tied to the compromise of BeyondTrust’s remote support tool and reportedly led to the breach of multiple offices within the Treasury Department. New details have ...

Atlanta-based Bomgar has agreed to purchase Phoenix, Az.-based BeyondTrust, creating an 800-employee privilege security behemoth with more than 19,000 customers and $300 million in combined annual ...

Built on the foundation of BeyondTrust’s industry-proven products, the Pathfinder platform delivers unmatched capabilities that empower organizations to reduce identity-based risks and ...

Attackers who exploited a zero-day vulnerability in BeyondTrust Privileged Remote Access and Remote Support products in December likely also exploited a previously unknown SQL injection flaw in ...

Initially, it was believed that the attackers compromised the Treasury’s BeyondTrust Remote Support SaaS instances via CVE-2024-12356, a previously unknown unauthenticated command injection ...

The breach was first discovered on 2 nd December, stemming from the compromise of a remote support API key used by third-party software service provider, BeyondTrust. BeyondTrust notified the ...

Built on the foundation of BeyondTrust's industry-proven products, the Pathfinder platform delivers unmatched capabilities that empower organizations to reduce identity-based risks and prioritize the ...