Chinese state-sponsored hackers are targeting unpatched BeyondTrust systems, using a vulnerability (CVE-2024-12356) with a CVSS score of 9.8. Although all self-hosted instances have allegedly been force updated, there are still 8,602 instances connected to the internet, mostly in the US, and it’s unclear if they’re patched. The vulnerability has been used to infiltrate the US Dept of Treasury. Companies are urged to limit inbound connectivity to these systems to trusted IP addresses only.

DOJ investigating ex-DigitalMint employee over alleged BlackCat ransom kickbacks – The Insurer
Summarize this content to a maximum of 60 words: DOJ investigating ex-DigitalMint employee over alleged BlackCat ransom kickbacks The Insurer