The Security Blog From Gridinsoft

Vilsa Stealer Discovered, Uses Heavy Encryption for Detection Evasion

Vilsa Trojan Stealer – What It Is

Researchers discovered a new infostealer malware dubbed Vilsa Stealer, with source code published on GitHub. Its easy-to-use interface potentially lowers…

Adobe Commerce Vulnerability CosmicSting Exploited, Fix Now

A research with Darknet monitoring utilities uncovered an active exploitation of a flaw present in Adobe Commerce (previously known as…

FakeUpdate Campaign Spreads WarmCookie Virus in France

FakeUpdate, a campaign of fake browser updates that pops up during regular Internet browsing, now targets users from France. The…

NC Quick Pass Toll SMS Scam Targets North Carolina

NC Quick Pass text messages is a new wave of SMS scam that targets people from North Carolina. It pretends…

Evil Corp, LockBit Ransomware Members Arrested, Structure Revealed

Recent UK NCA publications uncover the identities of 16 cybercrime actors that belong to Evil Corp/REvil and LockBit ransomware groups.…

TeamCity Vulnerability Exploited by CozyBear

JetBrains Vulnerability Exploited by CozyBear Hackers

JetBrain’s TeamCity servers became a target to a Russian-backed attacker…

QakBot Is Back, Microsoft Threat Intelligence Reports

QakBot is Back With a New Email Spam Campaign

Qakbot appears to be back online after the network destruction…

Snatch Ransomware Claims Hacking KraftHeinz

KraftHeinz Hacked by Snatch Ransomware Gang

The global food and beverage company KraftHeinz became a target…

Ukraine's Biggest Cellular Carrier Kyivstar Hacked

Kyivstar, Ukraine’s Biggest Cell Carrier, Hacked

On Tuesday, December 12, 2023, Ukraine’s largest cellular operator Kyivstar…

New Apache Struts 2 RCE Vulnerability Discovered

New Apache Struts 2 Vulnerability Allows for RCE

A newly discovered critical security flaw in Apache Struts 2,…

Researchers Uncover Malicious Loan Apps With 12 Million Users

Malicious Loan Apps in Play Store Decieved 12M Users

Eighteen malicious loan apps on the Google Play Store, posing…

PoolParty Injection Techniques Circumvent Top Security Solutions

PoolParty Injection Techniques Circumvent EDR Solutions

A set of process injection techniques, named PoolParty, was presented…

WordPress Releases Patch for Critical Security Vulnerability

WordPress Critical Vulnerability Fixed in Patch 6.4.2

WordPress has rolled out version 6.4.2, addressing a critical remote…

AeroBlade is targeting the U.S. aerospace industry

AeroBlade TA Spies On U.S. Aerospace Industry

Cybersecurity experts have uncovered a sophisticated cyberespionage campaign targeting a…

ColdFusion Vulnerability Exploited to Infiltrate Servers of a Federal Agency

Federal Agency Hacked With ColdFusion Vulnerability

A vulnerability in Adobe’s ColdFusion allowed hackers to breach two…

Sierra Wireless AirLink Routers Have 21 Vulnerabilities

Sierra AirLink Vulnerabilities Expose Critical Infrastructure

The grand total of 21 security flaws was discovered in…

Microsoft alerted about New Cactus ransomware

Cactus Ransomware Attacks – Microsoft Alerts

Microsoft has raised the alarm about a growing wave of…

AI Assistant

Hello! 👋 How can I help you today?