Title: CISA’s 72-Hour Warning: BeyondTrust Under Fire

Описание: 🚨 URGENT: CISA Issues 72-Hour Patch Mandate for BeyondTrust RCE (CVE-2026-1731)

CISA has added a critical vulnerability in BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) to its Known Exploited Vulnerabilities (KEV) catalog. Federal agencies have been given just 3 days to patch—a clear signal that active, high-stakes exploitation is underway.

In this video, we break down the technical details of CVE-2026-1731, a pre-authentication Remote Code Execution (RCE) flaw with a CVSS score of 9.9. If your organization uses BeyondTrust for privileged access, you are likely in the crosshairs of state-sponsored groups like Silk Typhoon.

What You’ll Learn:
The Technical Core: How attackers are abusing the /get_portal_info endpoint.

The Threat Actor Connection: Why Chinese state-sponsored groups are targeting these specific "Keys to the Kingdom."

The Kill Chain: From public PoC to active scanning and lateral movement.

Remediation Steps: The exact versions you need to be on to mitigate this risk TODAY.

Affected Versions:
BeyondTrust Remote Support: 25.3.1 and earlier (Patch to 25.3.2+)

Privileged Remote Access: 24.3.4 and earlier (Patch to 25.1.1+)

🔗 Resources Mentioned:

BleepingComputer Article: [https://www.bleepingcomputer.com/news...

BeyondTrust Security Advisory: [https://www.beyondtrust.com/trust-cen...]

CISA KEV Catalog: [https://www.cisa.gov/known-exploited-...]

Stay Secure:
If you found this briefing helpful, please Like and Subscribe. I provide rapid-response updates on the latest CVEs and zero-days to help cybersecurity professionals keep their infrastructure defended.

#CyberSecurity #BeyondTrust #CISA #Infosec #ZeroDay #RCE #CVE20261731 #SysAdmin #BlueTeam