Security News > 2025 > February > Hackers exploit Cityworks RCE bug to breach Microsoft IIS servers
2025-02-07 18:42
Software vendor Trimble is warning that hackers are exploiting a Cityworks deserialization vulnerability to remotely execute commands on IIS servers and deploy Cobalt Strike beacons for initial network access. [...]
News URL
Related news
- Unpatched PHP Voyager Flaws Leave Servers Open to One-Click RCE Exploits (source)
- DragonRank Exploits IIS Servers with BadIIS Malware for SEO Fraud and Gambling Redirects (source)
- Hackers use FastHTTP in new high-speed Microsoft 365 password attacks (source)
- Microsoft fixes Office 365 apps crashing on Windows Server systems (source)
- Microsoft fixes Windows Server 2022 bug breaking device boot (source)
- HPE investigates breach as hacker claims to steal source code (source)
- Hackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS Botnet (source)
- Hackers exploit 16 zero-days on first day of Pwn2Own Automotive 2025 (source)
- Microsoft issues out-of-band fix for Windows Server 2022 NUMA glitch (source)
- CISA: Hackers still exploiting older Ivanti bugs to breach networks (source)