Microsoft fixes “BadSuccessor” Kerberos vulnerability (CVE-2025-53779)

Threat Score:
49
Feeds2
1 day ago
Microsoft fixes “BadSuccessor” Kerberos vulnerability (CVE-2025-53779)

Overview

Microsoft fixes “BadSuccessor” Kerberos vulnerability (CVE-2025-53779) For August 2025 Patch Tuesday, Microsoft has released security updates resolving 100+ security vulnerabilities in its various solutions, including a relative path traversal flaw in Windows Kerberos (CVE-2025-53779) that allows an authorized attacker to elevate privileges over a network as part of aBadSuccessorattack. The vulnerability, discovered by Akamai researcher Yuval Gordon, exploits the delegated Managed Service Accoun...

Related Articles

5 articles
1

CISA Warns N-able Bugs Under Attack, Patch Now

Dark Reading 6 hours ago

Two critical N-able vulnerabilities enable local code execution and command injection; they require authentication to exploit, suggesting they wouldn't be seen at the beginning of an exploit chain.

Score
86
Read more
3

US Sanctions Crypto Exchange Tied to Russian Ransomware

Data Breach Today UK 1 hour ago

US Treasury Says Crypto Exchange Helped Launder $100 Million for Ransomware Gangs The U.S. Department of Treasury sanctioned Thursday a Russian founder and co-owners of the Garantex cryptocurrency exchange in a bid to tighten methods criminal hackers use to launder extortion money and Kremlin sanctions busting. Regulators also sanctioned Garantex successor Grinex.

Score
82
Read more
4

Norway confirms dam intrusion by Pro-Russian hackers

Security Affairs 8 hours ago

Norway’s security service PST says pro-Russian hackers took over a dam in April, opening outflow valves. Norway’s Police Security Service (PST) says pro-Russian hackers seized control of a dam’s systems in April, opening outflow valves. On April 7, the attackers took control of a dam in Bremanger, western Norway, opening a flood gate to release […]

Score
81
Read more
5

Multiple ZTNA Products Authentication Bypass

FortiGuard Threat Signal 57 minutes ago

Threat Signal Report Multiple ZTNA Products Authentication Bypass Description What is the Vulnerability? A series of critical vulnerabilities affecting leading zero trust platforms - Zscaler, Netskope, and Check Point (Perimeter 81) - have been disclosed following a seven-month research campaign by security researchers David Cash and Richard Warren. These flaws include authentication bypasses, privilege escalation, and hardcoded credentials, significantly weakening the core security assumptions

Score
80
Read more