KRQE Blogs

BeyondTrust’s Annual Microsoft Vulnerabilities Report Finds Vulnerability Numbers Remain High with Elevation of Privilege Remaining the #1 Vulnerability Category

Elevation of Privilege is the top vulnerability category for the fourth year running, accounting for 40% of all Microsoft vulnerabilities in 2023 Total vulnerabilities maintain 4-year holding pattern ...
Bleeping Computer

BeyondTrust warns of pre-auth RCE in Remote Support software

BeyondTrust has released security updates to fix a high-severity flaw in its Remote Support (RS) and Privileged Remote Access (PRA) solutions that can let unauthenticated attackers gain remote code ...
Hosted on MSN

CISA tells agencies to patch BeyondTrust bug now

The US Cybersecurity and Infrastructure Security Agency (CISA) has added two recently-discovered BeyondTrust bugs to its Known Exploited Vulnerabilities (KEV) catalog. The move means CISA has seen ...
Dark Reading

CISA: Second BeyondTrust Vulnerability Added to KEV Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) is urging federal agencies to patch a command injection flaw tracked as CVE-2024-12686, otherwise known as BT24-11, and has added it to the ...
CSOonline

PostgreSQL patches SQLi vulnerability likely exploited in BeyondTrust attacks

Attackers who exploited a zero-day vulnerability in BeyondTrust Privileged Remote Access and Remote Support products in December likely also exploited a previously unknown SQL injection flaw in ...
Morningstar

BeyondTrust Launches Free Identity Security Risk Assessment to Reveal Hidden Paths to Privilege™

Complimentary new assessment--powered by Identity Security Insights--provides actionable recommendations to secure against vulnerabilities and help organizations tackle identity threats New assessment ...