The Security Blog From Gridinsoft

Chrome Zero-Day Exploited

Google Patches Chrome Zero-Day Under Active Attack — Update Now

Google dropped an urgent Chrome update on Wednesday to fix a high-severity vulnerability that’s already being exploited in the wild.…

AI Chats Are Delivering AMOS Stealer Through Google Search Results

Here’s a novel malware delivery vector that nobody saw coming. Attackers are weaponizing publicly shared conversations with AI assistants like…

The Hunter Becomes the Hunted: North Korean Hacker Infected by LummaC2, Exposing Bybit Heist Secrets

In a twist of irony that cybersecurity researchers dream about, a North Korean state-sponsored hacker has been infected by the…

React2Shell Exploitation Goes Live: Chinese APT Groups Strike

Predictably, the exploits are rolling in. Within hours of CVE-2025-55182 disclosure, Chinese APT groups were already hitting targets. And today,…

React2Shell: Hot December for React and Next.js as Critical 10.0 CVSS Vulnerability Hits RSC

CVE-2025-55182 dropped yesterday evening, and predictably, everyone’s losing their minds. Cloudflare rolling out emergency WAF rules, Unit 42 counting nearly…

A hot December for React and Next.js

React2Shell: Hot December for React and Next.js as Critical 10.0 CVSS Vulnerability Hits RSC

CVE-2025-55182 dropped yesterday evening, and predictably, everyone’s losing their minds.…

SmartTube was Hacked

SmartTube YouTube Client Hacked: Your Ad-Free TV App Just Became a Botnet

Using SmartTube on your Android TV to escape YouTube’s aggressive…

Operation Olympia: Cryptomixer down after 9 years

Cryptomixer’s €1.3 Billion Laundromat Just Got Washed Out (With Cinematic Flair)

Somewhere in Zurich last week, law enforcement seized Cryptomixer, a…

When Free Robux Promises Flood Roblox Game Chats

Roblox Warning: Blox Green/Blue/Pink Free Robux Generators Are Fake

If you’ve been playing Roblox lately and noticed a sudden…

Russia's "Bulletproof" Hosting Empire

Media Land Sanctioned: US, UK, and Australia Crush Russian “Bulletproof” Hosting Empire

November 20, 2025 — In a rare display of international…

Automated Espionage - Chinese Hackers

Chinese Hackers Used Claude AI to Automate 90% of Cyber Espionage Campaign

Chinese cyber spies automated 90% of their attack campaign using…

ClickFix Resurrects

ClickFix Gets Creative: Abusing a 1971 Protocol to Deliver Malware

ClickFix is so widespread these days that you can find…

ClickFix - Inside the CAPTCHA-Fueled Scam of 2025

The Chronicles of ClickFix: 2025’s Biggest Hit Keeps Evolving

Meet ClickFix, the social engineering attack that’s become the cybercriminal’s…

PROMPTFLUX AI Malware

PROMPTFLUX: AI Malware Using Gemini for Self-Modification

Malware that rewrites itself on the fly, like a shape-shifting…

7 million USDT instagram crypto scam

The 7 Million USDT Instagram Scam: How Fake Inheritance Messages Lead to Real Losses

Picture this: You’re scrolling through Instagram when a message pops…

Forum XSS.IS Seized

Major Cybercrime Forum XSS.IS Seized After Admin Arrested in Ukraine

In a significant blow to the global cybercrime ecosystem, Ukrainian…

AI-Malware Bypasses Microsoft Defender

AI-Generated Malware Bypasses Microsoft Defender 8% of the Time, Black Hat 2025 Research Reveals

Imagine a world where hackers don’t painstakingly craft malicious code…

AI Assistant

Hello! 👋 How can I help you today?