A critical pre-authentication command injection vulnerability (CVE-2026-1731) in BeyondTrust Remote Support is being actively exploited to compromise self-hosted deployments and Bomgar appliances. Arctic Wolf researchers detected attacks where threat actors deployed SimpleHelp RMM tools, created domain admin accounts, and

3m read time From csoonline.com
Post cover image

Sort: