Security Bulletin
2 Jun 2025
Biztonsági szemle
Critical Bugs Could Spark Takeover of Widely Used Fire Safety OT/ICS Platform
The unpatched security vulnerabilities in Consilium Safety's CS5000 Fire Panel could create "serious safety issues" in environments where fire suppression and safety are paramount, according to a CISA advisory.
2 Jun 2025
Biztonsági szemle
More contextualized CISA KEV catalog pushed
All KEV entries should include not only platform-specific relevance indicators and CVE origin details but also attack chain and attack path context, said the OX team.
2 Jun 2025
Biztonsági szemle
New post-quantum cryptography migration guidance unveiled
Detailed in the roadmap are the preparation, baseline understanding, planning and execution, and monitoring and evaluation stages of the process, according to the PQCC.
2 Jun 2025
Biztonsági szemle
Cyber Safety Review Board revival sought by senators
With the U.S. facing increasing cyber threats from China, it is crucial that the CSRB be immediately reinstated by DHS and CISA, said the lawmakers in a letter to Department of Homeland Security Secretary Kristi Noem.
2 Jun 2025
Biztonsági szemle
Major DDoS attack disrupts Moscow's internet services
Internet service restoration efforts are already being conducted alongside Roskomnadzor, the country's communications regulator, noted ASVT, which has named Ukraine's IT Army hacktivist operation as the perpetrator of the intrusion.
2 Jun 2025
Biztonsági szemle
Impersonation of White House chief of staff under federal probe
Attackers who infiltrated Wiles' phone were able to impersonate the official in text messages and calls to senators, governors, and business executives across the country, according to a report from The Wall Street Journal, which cited statements...
2 Jun 2025
Biztonsági szemle
Nearly $52.5M settlement to be paid by Fred Hutch over 2023 cyberattack
Information exfiltrated during the Thanksgiving intrusion had been leveraged by attackers to facilitate threatening extortion techniques against cancer patients, according to the class action.
2 Jun 2025
Biztonsági szemle
Covenant Health attack impacts Maine, New Hampshire hospitals
Investigation into the incident, which did not significantly affect post-acute care facilities, is already underway, noted Covenant Health.
2 Jun 2025
Biztonsági szemle
Massive TikTok breach claimed to compromise 428M users
Included in the stolen dataset were individuals' email addresses, mobile numbers, TikTok user IDs, usernames, nicknames, biographies, avatar URLs, profile links, account flags, and other metrics, according to Often9.
2 Jun 2025
Biztonsági szemle
Widespread Linux password hash theft likely with new bugs
While the Canonical apport package flaw, tracked as CVE-2025-5054, could be leveraged to facilitate data leaks through PID-reuse, the systemd-coredump bug, tracked as CVE-2025-4598, could be abused to force crash a SUID process that would be replaced...
2 Jun 2025
Biztonsági szemle
Beyond the Broken Wall: Why the Security Perimeter Is Not Enough
Organizations need to abandon perimeter-based security for data-centric protection strategies in today's distributed IT environments.
2 Jun 2025
Biztonsági szemle
In the AI Race With China, Don't Forget About Security
The US needs to establish a clear framework to provide reasonable guardrails to protect its interests — the quicker, the better.