FlagThis

A zero-day breach at BeyondTrust exposed 17 SaaS customers due to a compromised API key. The attackers utilized the key to gain unauthorized access and reset local application passwords, highlighting significant vulnerabilities in API key management. This incident underscores the critical need for robust security practices, including API key protection and multi-factor authentication to prevent similar attacks in the future.

The US Treasury Department has sanctioned Sichuan Silence, a Chinese cybersecurity company, and its employee Guan Tianfeng for their involvement in a global firewall compromise in April 2020. This hack exploited a zero-day vulnerability, impacting tens of thousands of firewalls, including those of critical infrastructure companies. Guan Tianfeng has also been indicted by the Department of Justice for developing and deploying malware, leading to a $10 million reward for information on the company or Guan. This coordinated action highlights the ongoing threat posed by Chinese cyber actors.