Mastodawn

Hackread.com May 26, 2025

🚨 Chinese hackers exploiting a Cityworks zero-day (CVE-2025-0994) to hit US local agencies, including municipal systems and public services, warns #CiscoTalos.

Read: https://hackread.com/chinese-hackers-exploit-cityworks-0day-us-local-agencies/

#CyberSecurity #Infosec #CVE2025 #Cityworks #ZeroDay #RCE #China

Chinese Hackers Exploit Cityworks 0-Day to Hit US Local Agencies

Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto

securityaffairs May 23, 2025

Chinese threat actors exploited #Trimble #Cityworks flaw to breach U.S. local government networks
https://securityaffairs.com/178203/hacking/chinese-threat-actors-exploited-trimble-cityworks-flaw-to-breach-u-s-local-government-networks.html
#securityaffairs #hacking

Chinese threat actors exploited Trimble Cityworks Flaw to breach U.S. local government networks

A Chinese threat actor, tracked as UAT-6382, exploited a patched Trimble Cityworks flaw to deploy Cobalt Strike and VShell.

Security Affairs

AI6YR Ben May 22, 2025

Bleepingcomputer: Chinese hackers breach US local governments using Cityworks zero-day

"...Trimble Cityworks is a Geographic Information System (GIS)-based asset management and work order management software primarily used by local governments, utilities, and public works organizations and designed to help infrastructure agencies and municipalities manage public assets, handle permitting and licensing, and process work orders...."

https://www.bleepingcomputer.com/news/security/chinese-hackers-breach-us-local-governments-using-cityworks-zero-day/

#cybersecurity #gis #breach #trimble #cityworks

Chinese hackers breach US local governments using Cityworks zero-day

Chinese-speaking hackers have exploited a now-patched Trimble Cityworks zero-day to breach multiple local governing bodies across the United States.

BleepingComputer

The DefendOps Diaries May 22, 2025

Chinese hackers exploited a zero-day in Cityworks, putting US local government systems – from water to energy – at risk. How deep does this breach go for our everyday services?

https://thedefendopsdiaries.com/chinese-hackers-exploit-cityworks-zero-day-vulnerability-in-us-local-governments/

#cybersecurity
#zeroday
#cityworks
#chinesehackers
#criticalinfrastructure

securityaffairs Feb 7, 2025

U.S. #CISA adds #Trimble #Cityworks flaw to its Known Exploited Vulnerabilities catalog
https://securityaffairs.com/173975/security/u-s-cisa-adds-trimble-cityworks-flaw-to-its-known-exploited-vulnerabilities-catalog.html
#securityaffairs #hacking

U.S. CISA adds Trimble Cityworks flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Trimble Cityworks vulnerability CVE-2025-0994 to its Known Exploited Vulnerabilities catalog.

Security Affairs

Tech Cybersecurity Nieuws Feb 7, 2025

Hackers benutten cityworks rce-kwetsbaarheid om microsoft iis-servers binnen te dringen https://www.trendingtech.news/trending-news/2025/02/53766/hackers-benutten-cityworks-rce-kwetsbaarheid-om-microsoft-iis-servers-binnen-te-dringen #Cityworks #kwetsbaarheid #IIS-servers #RCE-aanvallen #Trimble #Trending #News #Nieuws

Hackers benutten cityworks rce-kwetsbaarheid om microsoft iis-servers binnen te dringen

Hackers maken misbruik van een kwetsbaarheid in de Cityworks-software om toegang te krijgen tot Microsoft Internet Information Services (IIS) servers. Deze kwe

Tech Nieuws

John Jacob Jingleheimer Schmit Jul 4, 2023

Constellation Field was definitely a great #CityWorks project for #SugarLand, Texas. Been enjoying it since 2012.