Security Bulletin
23 May 2025
Biztonsági szemle
Active Directory breach likely with critical Windows Server 2025 exploit
Active Directory users could be compromised with the new BadSuccessor attack technique, which involves the exploitation of a privilege escalation vulnerability within Windows Server 2025's delegated Managed Service Account feature that was made to...
23 May 2025
Biztonsági szemle
Significant compromise possible with critical Versa Concerto flaws
Versa Networks' centralized management and orchestration platform Versa Concerto has been impacted by a trio of serious vulnerabilities, which could be leveraged for authentication evasion and arbitrary code execution, according to BleepingComputer.
23 May 2025
Biztonsági szemle
Elevated cyberattack exposure of ICS instances found
SecurityWeek reports that nearly 150,000 internet-exposed industrial control system devices worldwide could be compromised in cyberattacks, with the rate of online devices used as honeypots increasing from almost 15% in April 2024 to 25% in January...
23 May 2025
Biztonsági szemle
Operational and Financial Benefits of Energy Utility Network Digitization
Digitizing and automating the utility network can lead to significant operational and financial benefits by reducing OPEX, CAPEX, human errors and time to deploy.
23 May 2025
Biztonsági szemle
3 Severe Bugs Patched in Versa's Concerto Orchestrator
Three zero-days could have allowed an attacker to completely compromise the Concerto application and the host system running it.
23 May 2025
Biztonsági szemle
Massive login credential database uncovered
More than 184 million account credentials likely obtained via information-stealing malware attacks have been exposed by an unsecured database potentially owned by malicious actors, Cybernews reports.
23 May 2025
Biztonsági szemle
Almost $223M pilfered in Cetus crypto heist
Decentralized cryptocurrency exchange Cetus had nearly $223 million pilfered following an attack on Thursday, according to The Record, a news site by cybersecurity firm Recorded Future.
23 May 2025
Biztonsági szemle
Separate ransomware attacks purportedly hit Coca-Cola, bottling partner
Hackread reports that Coca-Cola and bottling partner Coca-Cola Europacific Partners were purportedly compromised by the Everest ransomware operation and Gehenna hacking group, respectively, in separate intrusions.
23 May 2025
Biztonsági szemle
Companies Look to AI to Tame the Chaos of Event Security, Operations
As the summer event season kicks off, venue managers and security firms aim to make AI part of the solution for keeping control of crowds and protecting against cyber-physical threats.
23 May 2025
Biztonsági szemle
Sajtószemle – 2025. 21. hét
A 2025. 21. hetére vonatkozó hírválogatás, amely az NBSZ NKI által 2025.05.16. és 2025.05.22. között kezelt incidensek statisztikai adatait is tartalmazza.
23 May 2025
Biztonsági szemle
ISC Stormcast For Friday, May 23rd, 2025 https://isc.sans.edu/podcastdetail/9464, (Fri, May 23rd)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
23 May 2025
Biztonsági szemle
Microsoft dials up Uncle Sam to take down LummaC2 malware backbone
The U.S. Department of Justice teamed up with Microsoft to take down the backbone of a prolific malware operator.