ScreenConnect - How We Got Here and Where Do We Go

The disclosure of a critical pre-authentication remote code execution flaw in BeyondTrust (CVE-2026-1731) underscores how privileged access and remote support platforms represent high-impact attack surfaces when exposed to the internet.

A critical pac4j-jwt vulnerability (CVE-2026-29000) enables JWT authentication bypass through improper signature verification, allowing attackers to forge tokens and impersonate users. Learn the impact and recommended defensive actions.

Three new exploited vulnerabilities found within Cisco’s ASA and FTD software labeled CVE-2024-20353 (CVSS score 8.6), CVE-2024-20359 (CVSS score 6.0), and CVE-2024-20358 (CVSS score 6.0). CISA strongly recommends affected Cisco customers apply the patches as quickly as their patch policy allows...