Rapid7's vulnerability research team says attackers exploited a PostgreSQL security flaw as a zero-day to breach the network of privileged access management company BeyondTrust in December.

Rapid7's principal security researcher, Stephen Fewer, disclosed CVE-2025-1094 (8.1) on Thursday, saying it was a key part of the exploit chain that also included the BeyondTrust zero-day (CVE ...

Attackers who exploited a zero-day vulnerability in BeyondTrust Privileged Remote Access and Remote Support products in December likely also exploited a previously unknown SQL injection flaw in ...

BeyondTrust says it spotted an attack in early December 2024 It found some of its Remote Support SaaS instances were compromised It also found and patched two zero-day flaws BeyondTrust has ...

BeyondTrust is the worldwide leader in intelligent identity and access security, enabling organizations to protect identities, stop threats, and deliver dynamic access.

93% of respondents had an identity-related incident in the last eighteen months, with 81% indicating 2 or more incidentsNative integration is critical for zero trust operations, making it a key ...

Bringing together security technologies and integrators, Beyond Identity, Palo Alto Networks, CrowdStrike, Optiv, World Wide Technology, Guidepoint Security, BeyondTrust, Ping Identity and Climb ...

According to a company statement, BeyondTrust has acquired Entitle. The terms of the definitive agreement were not disclosed. This acquisition includes all Entitle products, employees, customers ...

Identity and access security specialist BeyondTrust's Identity Issues Impact Zero Trust Effectiveness survey found identity-related incidents are commonplace. Responses from more than 300 ...