The Security Blog From Gridinsoft

GitHub Enterprise Server Authentication Bypass Flow Discovered, Patch Now

GitHub Enterprise Server Auth Bypass Flaw Discovered

On May 21, 2024 GitHub disclosed a new authentication bypass flaw in their Enterprise Server. Encoded as CVE-2024-4985, it is…

Zabbix SQLi Vulnerability Leads to RCE, Latest Versions Affected

Zabbix, a network monitoring tool widely used in corporate IT infrastructure around the world, appears to be susceptible to SQL…

BreachForums is Seized, Again, FBI Puts a Banner

BreachForums, one of, if not the biggest Darknet forum, is once again seized by law enforcement. On Wednesday afternoon, May…

Pornographic Virus Alert From Microsoft

Microsoft shows you the banner which states that your PC is infected with a “Pornographic virus”? It seems that someone…

Dell Hacked, 49 Million Users Exposed

On Friday, May 10, Dell Technologies released a claim regarding the massive data leak that happened in their internal network.…

PyPI Malware Exploits Typosquatting, Spreads Infostealer & Crypto Hijacker

PyPI Malware Spreading Outbreak Exploits Typosquatting

PyPI, an index of Python packages, once again became a…

ShadowRay Vulnerability Exploited in Real World Attacks

ShadowRay Vulnerability Threatens AI Workloads, No Patch Available

Recent review of vulnerabilities in the Ray framework uncovered the…

Apple Silicon GoFetch Flaw Discovered, No Patches Possible

GoFetch Vulnerability in Apple Silicon Uncovered

Researchers uncovered a vulnerability in Apple Silicon processors, dubbed GoFetch.…

Vcurms and STRRAT Use GitHub as a Spreading Platform

STRRAT and Vcurms Malware Abuse GitHub for Spreading

A new phishing campaign has recently been discovered that uses…

Fujitsu Data Leaked Due to Cyberattack

Fujitsu Hacked, Warns of Data Leak Possibility

Fujitsu, one of the world’s leading IT companies, reports uncovering…

Fortinet Reports SQL/RCE Vulnerability in FortiClient EMS

Fortinet RCE Vulnerability Affects FortiClient EMS Servers

Fortinet disclosed a critical vulnerability affecting FortiClient EMS products in…

Infostealers Disguised as Adobe Reader Target Brazil

Adobe Reader Infostealer Plagues Email Messages in Brazil

A recent email spam campaign reportedly spreads infostealer malware under…

BianLian use JetBrains' TeamCity Flaws to Deploy Backdoors

BianLian Exploits TeamCity Vulnerability to Deploy Backdoors

BianLian, a group of cybercriminals known for their ransomware attacks,…

Microsoft is Hacked Again by Midnight Blizzard

Microsoft is Hacked, Again by Midnight Blizzard

Microsoft acknowledges being hacked for the second time this year,…

The Phantom Hacker Scams

Phantom Hacker Scams On The Rise, Target Elderly

Phantom hacker scams is a specific type of fraud that…

WogRAT Malware (WingsOfGod.dll) - Teardown and Removal Tutorial

WingsOfGod.dll – WogRAT Malware Analysis & Removal

WogRAT, also known as WingsOfGod RAT, is a novice remote…

ALPHV/BlackCat Shuts Down In Supposed Exit Scam

ALPHV Ransomware Shut Down, Exit Scam Supposed

On March 5, 2024, ALPHV/BlackCat ransomware claimed its shutdown, “due…