Skip to main content

Security Bulletin

<p>(Credit: IB Photography &#8211; stock.adobe.com)</p>
13 May 2025
Biztonsági szemle

Additional patches for Microsoft 365 on Windows 10 promised

The Register reports that Microsoft has committed to remediating security issues impacting Microsoft 365 apps on Windows 10 until Oct. 10, 2028, or a little over three years after it ends Windows 10 support.
scmagazine.com
Read more
Privacy concept: pixelated words Malware on digital background, 3d render
13 May 2025
Biztonsági szemle

Malware landscape dominated by FakeUpdates

Six percent of organizations around the world were compromised with the FakeUpdates malware, also known as SocGholish, making it the most prevalent malicious payload in April, Hackread reports.
scmagazine.com
Read more
13 May 2025
Biztonsági szemle

CISA Statement on Cyber-Related Alerts and Notifications

cisa.gov
Read more
13 May 2025
Biztonsági szemle

Hitachi Energy Relion 670/650/SAM600-IO Series

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.1 ATTENTION: Low attack complexity Vendor: Hitachi Energy Equipment: Relion 670/650/SAM600-IO Series Vulnerability: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') 2. RISK EVALUATION...
cisa.gov
Read more
13 May 2025
Biztonsági szemle

ABB Automation Builder

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Low attack complexity Vendor: ABB Equipment: Automation Builder Vulnerabilities: Incorrect Permission Assignment for Critical Resource 2. RISK EVALUATION Successful exploitation of these...
cisa.gov
Read more
13 May 2025
Biztonsági szemle

Hitachi Energy MACH GWS Products

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.4 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: MACH GWS products Vulnerabilities: Improper Neutralization of Special Elements in Data Query Logic, Improper Limitation...
cisa.gov
Read more
13 May 2025
Biztonsági szemle

CISA Adds Five Known Exploited Vulnerabilities to Catalog

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-30400 Microsoft Windows DWM Core Library Use-After-Free Vulnerability CVE-2025-32701 Microsoft Windows Common...
cisa.gov
Read more
13 May 2025
Biztonsági szemle

Hitachi Energy Service Suite

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: Service Suite Vulnerabilities: Use of Less Trusted Source, Inconsistent Interpretation of HTTP Requests ('HTTP Request...
cisa.gov
Read more
Dark Reading
13 May 2025
Biztonsági szemle

North Korea's TA406 Targets Ukraine for Intel

The threat group's goal is to help Pyongyang assess risk to its troops deployed in Ukraine and to figure out if Moscow might want more.
darkreading.com
Read more
13 May 2025
Biztonsági szemle

ISC Stormcast For Tuesday, May 13th, 2025 https://isc.sans.edu/podcastdetail/9448, (Tue, May 13th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
isc.sans.edu
Read more
AdobeStock_741676755
13 May 2025
Biztonsági szemle

Fake image-to-video AI sites deliver novel ‘Noodlophile’ infostealer

The “AI videos” generated from these sites are actually malicious executables that set off the attack chain.
scmagazine.com
Read more
Logo of Google on skyscraper
13 May 2025
Biztonsági szemle

Google settles nearly $1.4B Texas case for collecting personal data

Settlement is the largest individual penalty to date against Google in the state of Texas.
scmagazine.com
Read more
Language
Audience