The Security Blog From Gridinsoft

CVE-2025-24071 Windows File Explorer Spoofing Vulnerability Overview

CVE-2025-24071 Windows File Explorer Spoofing Vulnerability Uncovered, Patch Now

Microsoft uncovered the information about a critical vulnerability in Windows File Explorer, CVE-2025-24071, with a CVSS score of 7.5. It…

MassJacker Malware

Cybersecurity researchers have found MassJacker, a new, previously undocumented malware. It targets a predominantly freebie-seeking audience, i.e. users of pirated…

Jaguar Land Rover Data Breach Involved Two Attacks

Jaguar Land Rover suffered a significant data breach. Two hackers are said to have exploited stolen Jira credentials, leaking sensitive…

Threat Actor Behind X DDoS Attack Revealed

The X DDoS Attack, reported on March 10, 2025, caused significant outages, affecting tens of thousands of users. Baptiste Robert,…

CISA Adds 5 Exploited Vulnerabilities, Patch ASAP

CISA recently updated its Known Exploited Vulnerabilities catalog, adding five vulnerabilities that are actively being exploited. These affect Advantive VeraCore,…

Phishing Campaign Abuses Webflow, SEO, and Fake CAPTCHA

Fake CAPTCHA Abuses PDF and SEO Poisoning

Cybercrime actors misuse search ads to distribute fraudulent PDF files,…

Zimbra Releases Fixes for a Critical CVSS 9.8 SQL Injection Vulnerability

Zimbra Security Updates Fix a Critical SQL Injection Vulnerability

Zimbra has released updates that fix vulnerabilities in its products.…

Fake Google Chrome Sites Distribute ValleyRAT Malware, Using DLL Hijacking

Fake Google Chrome Downloading Sites Distribute ValleyRAT

Cybercriminals have set up fake websites mimicking Google Chrome’s official…

SVG Virus: Phishing Attacks and Malware Injection Through an Image

SVG Virus: New Phishing Tactique in Images

Security researchers have discovered a phishing campaign that is based…

Cisco Identity Services Engine Java Deserialization and Authorization Bypass Vulnerabilities Fixed, Update As Soon As Possible

Cisco Authorization Bypass Vulnerabilities Discovered

Cisco has rolled out security updates to fix two critical…

The Alarming Rise of DeepSeek Scams

The Alarming Rise of DeepSeek Scams

The release of DeepSeek AI chatbot gave a push for…

DeepSeek AI Data Breach: Over a Million Log Entries and Sensitive Keys Exposed

DeepSeek AI Data Leaked, Exposing User Data

Wiz Research discovered a detailed DeepSeek database containing sensitive information,…

What is Jupiter Airdrop scam?

Jupiter Airdrop Scam

Jupiter Airdrop scam is an alleged crypto-airdrop campaign that promises…

Telegram Captcha Exploits PowerShell to Spread Malware

Ross Ulbricht Telegram Captcha Scams On the Rise, Beware!

A new scam campaign has been detected, using a fake…

0-Click Cloudflare Deanonymization Attack Exploits Telegram, Signal, Discord And Other Apps

0-Click Cloudflare Deanonymization Vulnerability Discovered

A young security researcher has found a vulnerability in Cloudflare’s…

Zero-Click Exploit Targeting Samsung S23 and S24 Smartphones Discovered, Patch Now

Samsung Zero-Click Vulnerability Discovered, Update Now

Google Project Zero researcher reports on a Samsung zero-click vulnerability…

GayFemboy Mirai-Based Botnet Attacks Routers Through The Four-Faith Vulnerability

New Mirai Based Botnet Exploits Four-Faith Vulnerability

Researchers detected another IoT botnet based off of Mirai malware…

AI Assistant

Hello! 👋 How can I help you today?