Security News > 2025 > February > Hackers exploit Cityworks RCE bug to breach Microsoft IIS servers

2025-02-07 18:42
Software vendor Trimble is warning that hackers are exploiting a Cityworks deserialization vulnerability to remotely execute commands on IIS servers and deploy Cobalt Strike beacons for initial network access. [...]
News URL
Related news
- CentreStack RCE exploited as zero-day to breach file sharing servers (source)
- Russian Hackers Exploit Microsoft OAuth to Target Ukraine Allies via Signal and WhatsApp (source)
- Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised (source)
- Live Ransomware Demo: See How Hackers Breach Networks and Demand a Ransom (source)
- Microsoft isn't fixing 8-year-old shortcut exploit abused for spying (source)
- Hackers Exploit Severe PHP Flaw to Deploy Quasar RAT and XMRig Miners (source)
- Veeam RCE bug lets domain users hack backup servers, patch now (source)
- Oracle denies breach after hacker claims theft of 6 million data records (source)
- Chinese Hackers Breach Asian Telecom, Remain Undetected for Over 4 Years (source)
- StreamElements discloses third-party data breach after hacker leaks data (source)