Security News > 2025 > February > Critical PostgreSQL bug tied to zero-day attack on US Treasury

2025-02-14 14:19
High-complexity bug unearthed by infoseccers, as Rapid7 probes exploit further A high-severity SQL injection bug in the PostgreSQL interactive tool was exploited alongside the zero-day used to break into the US Treasury in December, researchers say.…
News URL
https://go.theregister.com/feed/www.theregister.com/2025/02/14/postgresql_bug_treasury/
Related news
- Critical RCE flaw in Apache Tomcat actively exploited in attacks (source)
- Critical GitHub Attack (source)
- Critical Cisco Smart Licensing Utility flaws now exploited in attacks (source)
- Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)
- EncryptHub linked to MMC zero-day attacks on Windows systems (source)
- Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks (source)
- Mozilla Patches Critical Firefox Bug Similar to Chrome’s Recent Zero-Day Vulnerability (source)
- Critical auth bypass bug in CrushFTP now exploited in attacks (source)
- Google fixes Android zero-days exploited in attacks, 60 other flaws (source)
- China names alleged US snoops over Asian Winter Games attacks (source)