The Security Blog From Gridinsoft

0-Click Cloudflare Deanonymization Attack Exploits Telegram, Signal, Discord And Other Apps

0-Click Cloudflare Deanonymization Vulnerability Discovered

A young security researcher has found a vulnerability in Cloudflare’s caching system. This flaw allowed attackers to get approximate users’…

Samsung Zero-Click Vulnerability Discovered, Update Now

Google Project Zero researcher reports on a Samsung zero-click vulnerability in a distribution supplied by the company. The shortcoming allegedly…

New Mirai Based Botnet Exploits Four-Faith Vulnerability

Researchers detected another IoT botnet based off of Mirai malware source code, that now leverages a newly-discovered vulnerability in Four-Faith…

25 Chrome Extensions Compromised, Exposing 2M+ Users

A targeted attack on Chrome extensions publishers compromised the add-ons uploaded to Chrome Web Store, leading to a potential compromise…

Apache Traffic Control Critical SQLi Vulnerability Fixed

Apache Traffic Control platform got a critical security patch that addresses a major vulnerability that could let attackers execute arbitrary…

CISA Alerts About Critical Vulnerability Under Active Exploitation

CISA Urges to Patch Critical Array Networks Vulnerabilities

The US cybersecurity agency CISA warned about the ongoing exploitation…

Meta Removes 2 Million Scam Accounts

Meta Deletes 2 Million Accounts Related to Scams

Meta has intensified its fight against pig butchering scams, removing…

Researchers Found New NodeStealer Samples, Based on Python

NodeStealer Returns With Python Codebase, More Functions

Researchers have identified an updated version of NodeStealer, now rewritten…

What is email phishing scams from Meta Security?

Meta Security Email Phishing Scams Explained

Attackers are targeting users of Meta services with phishing attacks.…

GitLab Releases Security Update, Patches Authentication Bypass Flaw

GitLab Fixes Critical Kubernetes Agent Takeover Vulnerability

GitLab has released another update that fixes varying degrees of…

FakeBat Malware Exploits Google Search Ads, Again

FakeBat Loader is Back With New Tactics and Payload

After a brief decline in loader-based malvertising, the FakeBat loader…

Ivanti EPM RCE vulnerability fixed, patch now

RCE Vulnerability in Ivanti Endpoint Manager Uncovered, Patch Now

In the latest update release, Ivanti disclosed the selection of…

Hacker Uploads Data Leaked in MOVEit Breaches

Hacker Leaks Corporate Data Stolen in 2023 MOVEit Breaches

The hacker, known as Nam3L3ss, posted the data of over…

BBVA Bank Hacked, Data Posted on the Darknet Forum

Hacker Leaks BBVA Bank Data, Including User Details

On November 11, 2024 a hacker known as Gatito_FBI_NZ published…

"Verify you are human" scam website explained

Verify you are Human Scam

While browsing the Web, you can occasionally get to a…

Palo Alto Network Expedition Tool Exploited

Palo Alto Network Expedition Tool Exploited, CISA Warns

The Cybersecurity and Infrastructure Security Agency (CISA) recently issued an…

Exploiting AI for Voice-Based Scams

GPT-4o Used for Scams and Voice Phishing

Voice-based scams grow increasingly sophisticated with the integration of advanced…

AI Assistant

Hello! 👋 How can I help you today?