The Security Blog From Gridinsoft

Critical Auth Bypass Vulnerability in GoAnywhere MFT

GoAnywhere MFT Auth Bypass Vulnerability Discovered

The fest of vulnerabilities in enterprise software continues with an auth bypass flaw in Fortra’s GoAnywhere MFT. Rated at CVSS…

Confluence RCE Vulnerability Under Massive Exploitation

Researchers are seeing attempts to exploit a critical vulnerability in outdated Atlassian Confluence servers. The flaw allows attackers to execute…

2 Citrix RCE Under Active Exploitation, CISA Notifies

CISA has given a timeframe of one to three weeks to fix three vulnerabilities related to Citrix NetScaler and Google…

LockBit Ransomware Uses Resume Word Files to Spread

A recent investigation by ASEC reveals the new tactics of an infamous LockBit ransomware. “Post-paid pentesters” started masquerading as innocuous…

Over 178,000 SonicWall Firewalls are Vulnerable to DoS and RCE

Recent research uncovers a significant portion of SonicWall firewall instances being susceptible to attacks. In particular, two vulnerabilities are able…

3 Less Popular Malware Spreading Ways

3 Unpopular Malware Spreading Ways in 2023

The modern Internet space is like an endless ocean, where…

Malicious Plugins Were Detected on VSCode Marketplace

Visual Studio Code Malicious Plugins Steal Personal Data

Some plugins for Visual Studio Code, a popular code editing…

Malware in the firmware of Android devices

Trend Micro: Millions of Android Devices Contain Malware Right in the Firmware

Trend Micro analysts presented an interesting report at the Black…

RedLine Stealer is Off to a Low Start

RedLine Stealer Issues 100,000 Samples – What is Happening?

Throughout the entire early May 2023, GridinSoft analysts team observed…

Western Digital acknowledged attack

Western Digital Admits that Users’ Personal Data Was Compromised in the Company’s Hack

Western Digital, which was hit by a BlackCat hack in…

Aurora Stealer Spreads via Fake Windows Update

Fake Windows Update in Browser Deliver Aurora Stealer

Fake Windows Update became a malware spreading way once again.…

FSB cyberspyware

The FBI Disrupted the Cyberspyware “Snake” that the Russian FSB Used for 20 Years

The US Federal Bureau of Investigation on Tuesday reported the…

LockBit Gang Leaks 600GB of Fullerton India's Data

Fullerton India Hacked, LockBit Leaks 600GB of Data

Fullerton India, a large lending institution from India, appears to…

Ransomware Using AuKill Malware to Disable EDR

Ransomware Attacks Increasingly Using AuKill Malware to Disable EDR

A new cybercrime tool called “AuKill” has emerged, which attackers…

AI and brain signals

AI Generated Video Based on Mouse Brain Signals

A team of researchers from the EPFL has developed an…

Black Cat and Western Digital

BlackCat Group Leaks Western Digital Data to the Network

The operators of the ransomware BlackCat (aka ALPHV) have published…

LOBSHOT Cryptostealer Offers Advanced Capabilities

LOBSHOT malware steals cryptowallets, exploits Google Ads

LOBSHOT, a recently-detected malware family, appears to be a new…