The Security Blog From Gridinsoft

1Password Vulnerability Let Attackers Exfiltrate Vault Items

1Password Vulnerability for MacOS Causes Credentials Leak

A critical vulnerability was discovered in 1Password that allows attackers to steal vault items by bypassing the app’s security measures.…

Windows COM Vulnerability Exploited by Chinese Hackers

A vulnerability in Windows COM, first discovered in 2018, has become the target of attacks once again. A Chinese hacker…

Apache OFBiz RCE Vulnerability Discovered, Patch Now

A vulnerability, CVE-2024-38856, has been discovered in Apache OFBiz that allows unauthenticated remote code execution. A patch is currently available,…

Ubiquiti G4 Vulnerability Discovered, Allowing for DDoS Attacks

Researchers found a flaw in Ubiquiti G4 Wi-Fi cameras, that exposes the selection of important chunks of information. They suppose…

Eriakos Scam in Facebook Ads Targets Personal and Banking Data

Fraudsters are using fake websites and Facebook Ads to steal users’ financial data. Researchers named the campaign Eriakos after the…

Atlassian Uncovers a New Vulnerability in Confluence

New Confluence Vulnerability Leads to Unauthorised Access

Another vulnerability in the flagship product of Atlassian corporation, Confluence,…

Octo Tempest Threat Actor – The Most Dangerous Cybercrime Gang?

Octo Tempest Threat Actor – The Most Dangerous Cybercrime Gang?

Octo Tempest, a financially-motivated hacking group, has been labeled “one…

IoT Malware Attacks Skyroket in 2023

IoT Malware Attacks Grow by 400% in 2023

IoT malware has been a major concern over the last…

WinRAR RCE Vulnerability Exploited in the Wild

WinRAR Vulnerability Allows Arbitrary Code Execution

Over the past few weeks, Google’s Threat Analysis Group (TAG)…

VMWare Fixes CVE-2023-34048 In vCenter Server

VMware Releases Patch for Critical vCenter Server RCE Vulnerability

VMware has released a patch for a critical vulnerability in…

1Password Hacked After the Okta Hack

1Password Hacked Following the Okta Hack

Recent security breach in the 2FA provider Okta appears to…

DarkGate Loader Spreads Via Spam in Microsoft Teams and Skype

Skype & Microsoft Teams Spam Spreads DarkGate Loader

Over the past few years, DarkGate has been relatively inactive.…

CBI along with Amazon and Microsoft uncovered fake Indian call centers

Fake Amazon and Microsoft Tech Support call centers busted

Amazon and Microsoft are partnering with CBI to crack down…

Ragnar Ransomware Servers Seized by Europol

Ragnar Locker Ransomware Shutdown, Infrastructure Seized

On October 19, 2023, a group of international law enforcement…

Trigona Ransomware Hacked by Ukrainian Cyber Alliance, Backups Wiped

Trigona Ransomware Hacked by Ukrainian Cyber Alliance

Trigona ransomware, a novice threat actor active since late 2022,…

Exim 0-day Vulnerablity Allows Executing Arbitrary Code

Exim Vulnerability Allows RCE, No Patches Available

Exim Internet Mailer, a program massively used as a basis…

RedLine and Vidar Developers Started Spreading Ransomware

Redline and Vidar Stealers Switch to Ransomware Delivery

Cybercriminals who stand behind RedLine and Vidar stealers decided to…

AI Assistant

Hello! 👋 How can I help you today?