Skip to main content

Security Bulletin

Futuristic technology using biometric authentication for digital identity verification in a conceptual illustration.
6 May 2025
Biztonsági szemle

Silverfort adds keyless biometrics to MFA Suite

As MFA adoption remains low, Silverfort aims to boost secure access without hindering productivity.
scmagazine.com
Read more
<p>(Credit: monticellllo &#8211; stock.adobe.com)</p>
6 May 2025
Biztonsági szemle

CISA flags two SonicWall flaws as actively exploited

Both flaws impact SonicWall SMA remote access devices and allow attackers to remotely inject commands and map file system paths.
scmagazine.com
Read more
6 May 2025
Biztonsági szemle

BrightSign Players

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: BrightSign Equipment: Brightsign Players Vulnerabilities: Execution with Unnecessary Privileges 2. RISK EVALUATION Successful exploitation of...
cisa.gov
Read more
6 May 2025
Biztonsági szemle

Optigo Networks ONS NC600

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Optigo Networks Equipment: ONS NC600 Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this...
cisa.gov
Read more
6 May 2025
Biztonsági szemle

Milesight UG65-868M-EA

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Milesight Equipment: UG65-868M-EA Vulnerability: Improper Access Control for Volatile Memory Containing Boot Code 2. RISK EVALUATION Successful...
cisa.gov
Read more
6 May 2025
Biztonsági szemle

CISA Releases Three Industrial Control Systems Advisories

CISA released three Industrial Control Systems (ICS) advisories on May 6, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-126-01 Optigo Networks ONS NC600 ICSA-25...
cisa.gov
Read more
6 May 2025
Biztonsági szemle

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-27363 FreeType Out-of-Bounds Write Vulnerability These types of vulnerabilities are frequent attack vectors for...
cisa.gov
Read more
6 May 2025
Biztonsági szemle

Unsophisticated Cyber Actor(s) Targeting Operational Technology

CISA is increasingly aware of unsophisticated cyber actor(s) targeting ICS/SCADA systems within U.S. critical Infrastructure sectors (Oil and Natural Gas), specifically in Energy and Transportation Systems. Although these activities often include...
cisa.gov
Read more
Iran Flag Digital Binary Code Cyberpunk Technology Concept
6 May 2025
Biztonsági szemle

Alleged cyberattack on Iran points to broader worldwide trend

Organizations must recognize that all nations are vulnerable to attacks on critical infrastructure.
scmagazine.com
Read more
Featured image for {“vendor”:”ppworks”,”type”:”segment”,”id”:”13789″} podcast from PPWorks
6 May 2025
Biztonsági szemle

AI Era, New Risks: How Data-Centric Security Reduces Emerging AppSec Threats - Idan Plotnik, Vishal Gupta - ASW #329

scmagazine.com
Read more
6 May 2025
Biztonsági szemle

Python InfoStealer with Embedded Phishing Webserver, (Tue, May 6th)

Infostealers are everywhere for a while now. If this kind of malware is not aggressive, their impact can be much more impacting to the victim. Attackers need always more and more data to be sold or reused in deeper scenarios. A lot of infostealers...
isc.sans.edu
Read more
6 May 2025
Biztonsági szemle

ISC Stormcast For Tuesday, May 6th, 2025 https://isc.sans.edu/podcastdetail/9438, (Tue, May 6th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
isc.sans.edu
Read more
Language
Audience