Security News > 2025 > February > BeyondTrust Zero-Day Breach Exposed 17 SaaS Customers via Compromised API Key
2025-02-01 06:40
BeyondTrust has revealed it completed an investigation into a recent cybersecurity incident that targeted some of the company's Remote Support SaaS instances by making use of a compromised API key. The company said the breach involved 17 Remote Support SaaS customers and that the API key was used to enable unauthorized access by resetting local application passwords. The breach was first flagged
News URL
https://thehackernews.com/2025/02/beyondtrust-zero-day-breach-exposes-17.html
Related news
- CentreStack RCE exploited as zero-day to breach file sharing servers (source)
- [Webinar] AI Is Already Inside Your SaaS Stack — Learn How to Prevent the Next Silent Breach (source)
- ⚡ Weekly Recap: iOS Zero-Days, 4Chan Breach, NTLM Exploits, WhatsApp Spyware & More (source)
- Commvault Confirms Hackers Exploited CVE-2025-3928 as Zero-Day in Azure Breach (source)
- Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. Organization (source)