The Security Blog From Gridinsoft

SAP Releases Fixes for 17 Vulnerabilities, 2 Critical Flaws

Critical SAP Auth Bypass and SSRF Flaws Fixed, Update Now

SAP, the developer of business management software, released a huge security update that fixes numerous vulnerabilities in their software. Among…

1Password Vulnerability for MacOS Causes Credentials Leak

A critical vulnerability was discovered in 1Password that allows attackers to steal vault items by bypassing the app’s security measures.…

Windows COM Vulnerability Exploited by Chinese Hackers

A vulnerability in Windows COM, first discovered in 2018, has become the target of attacks once again. A Chinese hacker…

Apache OFBiz RCE Vulnerability Discovered, Patch Now

A vulnerability, CVE-2024-38856, has been discovered in Apache OFBiz that allows unauthenticated remote code execution. A patch is currently available,…

Ubiquiti G4 Vulnerability Discovered, Allowing for DDoS Attacks

Researchers found a flaw in Ubiquiti G4 Wi-Fi cameras, that exposes the selection of important chunks of information. They suppose…

Data Breach in Zeroed-In Affects Dollar Tree

Dollar Tree Data Breach Impacting 2 Million People

Discount retailer Dollar Tree was hit by a data breach…

BLUFFS Vulnerabilities Make Bluetooth Devices Open to Attack

BLUFFS Bluetooth Vulnerability Threatens Billions of Devices

Eurecom has uncovered a series of exploits named “BLUFFS”, posing…

Okta Discloses More Users Exposure in the October Hack

Okta Hack Exposes Data of All Support Customers

Back in mid-October 2023 Okta, one of the world’s largest…

Henry Schein Was Hacked By ALPHV, Again

Henry Schein was hacked twice by BlackCat ransomware

Henry Schein Global, a healthcare solutions provider, faced a persistent…

"Ethyrial: Echoes of Yore" Game Fell Victim to Ransomware Attack

Ethyrial: Echoes of Yore Ransomware Attack Wiped Player Accounts

“Ethyrial: Echoes of Yore” fell victim to a ransomware attack…

Europol Detained Hackers Related to Dharma and Hive Ransomware

Dharma Ransomware Criminals Captured in Ukraine, Europol Reports

On November 28, 2023, Europol claimed successful detainment of ransomware…

InfectedSlurs Botnet exploits vulnerabilities to spread Mirai

InfectedSlurs Botnet Exploits Zero-Days to Spread Mirai Malware

The “InfectedSlurs Botnet,” a sophisticated cyber threat, has been uncovered…

DarkGate and PikaBot May be the New QakBot

DarkGate and Pikabot Copy the QakBot Malware

According to researchers, the phishing campaign promoting the DarkGate and…

Phobos Ransomware Mimics VX-Underground

Phobos Ransomware Mimics VX-Underground Researchers

A new version of Phobos ransomware claims to be developed…

Hackers accessed sensitive health data of more than 8 million Welltok patients

Welltok Data Breach Exposes More Than 8 million Patients

Welltok, a healthcare Software as a Service (SaaS) provider, has…

LitterDrifter Worm Spreads on USB Drives

LitterDrifter – Russia’s USB Worm Targeting Ukrainian Entities

LitterDrifter USB worm, intricately linked to the notorious Gamaredon group…

ActiveMQ Vulnerability Exploited in the Wild to Install Cryptominer Malware

Apache ActiveMQ Vulnerability Exploited In The Wild

Recent Apache ActiveMQ vulnerability, that allows for remote code execution,…

AI Assistant

Hello! 👋 How can I help you today?