Security News > 2025 > February > Critical PostgreSQL bug tied to zero-day attack on US Treasury

2025-02-14 14:19
High-complexity bug unearthed by infoseccers, as Rapid7 probes exploit further A high-severity SQL injection bug in the PostgreSQL interactive tool was exploited alongside the zero-day used to break into the US Treasury in December, researchers say.…
News URL
https://go.theregister.com/feed/www.theregister.com/2025/02/14/postgresql_bug_treasury/
Related news
- Fortinet fixes critical zero-day exploited in FortiVoice attacks (source)
- Google fixes Android zero-days exploited in attacks, 60 other flaws (source)
- China names alleged US snoops over Asian Winter Games attacks (source)
- Apple fixes two zero-days exploited in targeted iPhone attacks (source)
- Apple plugs zero-day holes used in targeted iPhone attacks (CVE-2025-31200, CVE-2025-31201) (source)
- Apple Patches Two Zero-Days Used in ‘Extremely Sophisticated’ Attacks (source)
- Phishing detection is broken: Why most attacks feel like a zero day (source)
- DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan Attacks (source)
- SAP fixes critical Netweaver flaw exploited in attacks (source)
- SAP fixes suspected Netweaver zero-day exploited in attacks (source)