PostgreSQL flaw exploited as zero-day in BeyondTrust breach
Rapid7's vulnerability research team says attackers exploited a PostgreSQL security flaw as a zero-day to breach the network ...
The Hacker News1d
PostgreSQL Vulnerability Exploited Alongside BeyondTrust Zero-Day in Targeted Attacks
PostgreSQL SQL injection flaw (CVE-2025-1094) exploited alongside BeyondTrust zero-day, enabling arbitrary code execution.
SecurityWeek1d
Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation
Rapid7 finds a new zero-day vulnerability in PostgreSQL and links it to chain of attacks against a BeyondTrust Remote Support ...
CSOonline1d
PostgreSQL patches SQLi vulnerability likely exploited in BeyondTrust attacks
Rapid7 researchers believe the BeyondTrust Remote Support attacks from December also exploited a zero-day flaw in PostgreSQL.
The Register on MSN1d
Critical PostgreSQL bug tied to zero-day attack on US Treasury
The vulnerability in the PostgreSQL interactive tool (psql) can lead to arbitrary code execution (ACE) and there is also a ...
The Hacker News13d
BeyondTrust Zero-Day Breach Exposed 17 SaaS Customers via Compromised API Key
BeyondTrust breach impacted 17 SaaS customers via compromised API key linked to Silk Typhoon; U.S. Treasury affected.
Bleeping Computer29d
US sanctions Chinese firm, hacker behind telecom and Treasury hacks
The breach was possible after the hackers exploited a zero-day vulnerability in the remote support platform BeyondTrust. The attack was attributed to Chinese state-backed hackers, who targeted the ...
The Washington Post29d
Biden administration penalizes Chinese actors behind two major hacks
Yin Kecheng carried out a breach of an American software vendor, BeyondTrust ... this rule change “a major step in the use of zero-day exploits as a state priority.” A February 2024 leak ...