The Hacker News

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

Active exploitation of BeyondTrust enables unauthenticated RCE as CISA adds Apple, Microsoft, SolarWinds, and Notepad++ flaws to KEV list.

Critical BeyondTrust RCE flaw now exploited in attacks, patch now

A critical pre-authentication remote code execution vulnerability in BeyondTrust Remote Support and Privileged Remote Access ...

Crazy ransomware gang abuses employee monitoring tool in attacks

A member of the Crazy ransomware gang is abusing legitimate employee monitoring software and the SimpleHelp remote support ...

Tenable finds critical flaws in Google Looker used by 60,000 companies

Tenable Research disclosed two critical security vulnerabilities in Google Looker that could allow attackers to hijack systems or access corporate data across more than 60,000 companies using the ...
SecurityWeek

Vulnerabilities Allowed Full Compromise of Google Looker Instances

Two vulnerabilities can be exploited to fully compromise instances of the Google Looker business intelligence platform.
Dark Reading

Google Looker Bugs Allow Cross-Tenant RCE, Data Exfil

Attackers could even have used one vulnerable Lookout user to gain access to other Google Cloud tenants' environments.