The Security Blog From Gridinsoft

CVSS 9.9 Vulnerability in Apache Traffic Control Fixed, Update ASAP

Apache Traffic Control Critical SQLi Vulnerability Fixed

Apache Traffic Control platform got a critical security patch that addresses a major vulnerability that could let attackers execute arbitrary…

Lockbit 4.0 Released, With New Infrastructure and Features

Lockbit ransomware group steps up with a new version of its malicious software, LockBit 4.0, and with adjustments to their…

LockBit Ransomware Developer Arrested and Extradicted in Israel

US authorities have detained a developer associated with the LockBit group, one of the most active ransomware creators. Investigators allege…

BeyondTrust Remote Access Vulnerability Exploited, Update Now

BeyondTrust’s Privileged Remote Access (PRA) and Remote Support (RS) solutions have two vulnerabilities, identified as CVE-2024-12356 and CVE-2024-12686. These vulnerabilities…

New Ledger Phishing Campaign Targets Recovery Phrases

Owners of popular hardware cryptocurrency wallets Ledger have become the target of phishing attacks. Hackers send out fake emails to…

AsyncRAT Mimics eBook Files to Spread

AsyncRAT Spreads As Fake eBook Files, Uses LNK Files

Recent research uncovers a new spreading campaign of AsyncRAT, that…

Avast Releases Donex Ransomware Decryptor

Donex, DarkRace, fake LockBit 3.0 and Muse Ransomware Decryptor Released

A decryptor for a Donex ransomware, also known under the…

regreSSHion Vulnerability Allows Remote Attackers to Gain Root Privileges on Glibc-Based Linux

RegreSSHion OpenSSH Vulnerability Allows for RCE

A newly discovered vulnerability in OpenSSH nicknamed regreSSHion allows remote…

Instagram Hacking Online Scams Frenzy

Fake Instagram Hacking Services

Instagram hacking scams is an old-new direction of online fraud…

GrimResource Attack Targets Microsoft Management Console

New GrimResource Attack Technique Targets MMC, DLL Flaw

A new malicious code execution technique, coined GrimResource, was discovered,…

Binance Smart Contracts Abused in Malware Delivery

Binance Smart Contracts Blockchain Abused in Malware Spreading

Cybercriminals appear to exploit Binance smart contracts as intermediary C2,…

Kaspersky Antivirus Banned By the Biden Administration

Kaspersky Antivirus Banned By the Biden Administration

On June 20, 2024, the Biden administration implemented a complete…

Win.MxResIcn.Heur.Gen False Positive Detection by MaxSecure

Win.MxResIcn.Heur.Gen

Antivirus engine of MaxSecure, a well-known cybersecurity vendor, currently shows…

Lumma Stealer Spreads in Fake Browser Updates Generated With ClearFake Framework

Lumma Stealer Spreads Via Fake Browser Updates, Uses ClearFake

Recent research uncovered a selection of websites that deploy Lumma…

MSMQ RCE Vulnerability Fixed in Patch Tuesday, Update Now

Microsoft Patches Critical MSMQ Vulnerability

In the latest Patch Tuesday, on June 11, 2024 Microsoft…

Hamster Kombat Rises Questions Because of Russian Registration

Hamster Kombat Game Rises Concern Over Russian Origins

Hamster Kombat, a recently released tap game in Telegram Messenger,…

Embargo Ransomware Discovered, Coded in Rust

New Embargo Ransomware Discovered, Possible ALPHV Reborn

A new strain of ransomware, named Embargo, written in Rust,…

AI Assistant

Hello! 👋 How can I help you today?