If attackers own your remote access, they own your entire network. π
CVE-2026-1731 Β· Severity 9.9 Β· Critical unauthenticated RCE in Remote Support and PRA.
We are seeing a massive surge in exploitation attempts against @[BeyondTrust](urn:li:organization:12625) instances. The @[CISA](urn:li:organization:13010360) has issued an urgent deadline for federal agencies to remediate this flaw within three days.
Attackers are currently deploying web shells and backdoors to achieve persistent access. This vulnerability allows for the execution of arbitrary commands with full administrative privileges without a valid login.
The uncomfortable truth: The software you use to secure your environment is becoming the highest-risk point of failure for your enterprise.
β Patch all self-hosted Remote Support and PRA appliances to version BT26-02 immediately.
β Restrict appliance web management access to known IP ranges or a secure VPN only.
β Conduct a retrospective forensic search for unauthorized admin account creation.
Is your remote access infrastructure currently internet-exposed without secondary IP restrictions? π
#Cybersecurity #ZeroTrust #PatchManagement #IncidentResponse #CISO #CodeDefence