The Security Blog From Gridinsoft

Zimbra Releases Fixes for a Critical CVSS 9.8 SQL Injection Vulnerability

Zimbra Security Updates Fix a Critical SQL Injection Vulnerability

Zimbra has released updates that fix vulnerabilities in its products. One of the vulnerabilities is critical, at a CVSS rating…

Fake Google Chrome Downloading Sites Distribute ValleyRAT

Cybercriminals have set up fake websites mimicking Google Chrome’s official download page to distribute the ValleyRAT malware. The campaign is…

SVG Virus: New Phishing Tactique in Images

Security researchers have discovered a phishing campaign that is based on the misuse of SVG virus images. Although there have…

Cisco Authorization Bypass Vulnerabilities Discovered

Cisco has rolled out security updates to fix two critical vulnerabilities in its Identity Services Engine (ISE). If exploited, these…

The Alarming Rise of DeepSeek Scams

The release of DeepSeek AI chatbot gave a push for an enormous number of DeepSeek scams that trick users in…

SAP Releases Fixes for 17 Vulnerabilities, 2 Critical Flaws

Critical SAP Auth Bypass and SSRF Flaws Fixed, Update Now

SAP, the developer of business management software, released a huge…

1Password Vulnerability Let Attackers Exfiltrate Vault Items

1Password Vulnerability for MacOS Causes Credentials Leak

A critical vulnerability was discovered in 1Password that allows attackers…

Chinese Cybercriminals Are Exploiting A Vulnerability In Windows 10

Windows COM Vulnerability Exploited by Chinese Hackers

A vulnerability in Windows COM, first discovered in 2018, has…

Critical Apache OFBiz Flaw Allows Unauthorized Code Execution

Apache OFBiz RCE Vulnerability Discovered, Patch Now

A vulnerability, CVE-2024-38856, has been discovered in Apache OFBiz that…

Ubiquiti Wi-Fi Cameras Flaw Exposes Informaiton, Allows for DDoS Attacks

Ubiquiti G4 Vulnerability Discovered, Allowing for DDoS Attacks

Researchers found a flaw in Ubiquiti G4 Wi-Fi cameras, that…

Erikos Scam Shops Abuse Meta Ads

Eriakos Scam in Facebook Ads Targets Personal and Banking Data

Fraudsters are using fake websites and Facebook Ads to steal…

BangBros Drops 12 Million Records About Users

BangBros Leak Exposes 12 Million User Records

BangBros, a studio and platform specializing in adult content, leaked…

Fake Google Authenticator App Spreads Through Ads

Fake Google Authenticator Abuses Google Ads, Spreads Malware

Cybercriminals promote a fake Google Authenticator page through ads in…

Gh0st RAT Uses Fake Chrome Site to Attack Chinese Users

Gh0st RAT Malware Attacks Chinese Users Via Fake Chrome Page

Attackers are using a new loader, Gh0stGambit, to spread Gh0st…

Cyber Threats Facing the 2024 Paris Olympics

2024 Olympic Cyberattack Risks: What Should We Expect

The Olympic Games is a massive sporting event that attracts…

India Post Smishing Scam Targets iPhone Users in India

India Post SMS Phishing Targets Mobile Users in India

Massive complaints come from Indian users regarding a new wave…

Docker Engine Auth Bypass Vulnerability Abuses Authentication Plugins

Docker Engine Authentication Bypass Vulnerability Exploited

Attackers are actively exploiting a critical vulnerability in the Docker…

AI Assistant

Hello! 👋 How can I help you today?