The Security Blog From Gridinsoft
GoAnywhere MFT Auth Bypass Vulnerability Discovered
The fest of vulnerabilities in enterprise software continues with an auth bypass flaw in Fortra’s GoAnywhere MFT. Rated at CVSS…
Confluence RCE Vulnerability Under Massive Exploitation
Researchers are seeing attempts to exploit a critical vulnerability in outdated Atlassian Confluence servers. The flaw allows attackers to execute…
2 Citrix RCE Under Active Exploitation, CISA Notifies
CISA has given a timeframe of one to three weeks to fix three vulnerabilities related to Citrix NetScaler and Google…
LockBit Ransomware Uses Resume Word Files to Spread
A recent investigation by ASEC reveals the new tactics of an infamous LockBit ransomware. “Post-paid pentesters” started masquerading as innocuous…
Over 178,000 SonicWall Firewalls are Vulnerable to DoS and RCE
Recent research uncovers a significant portion of SonicWall firewall instances being susceptible to attacks. In particular, two vulnerabilities are able…
LastPass Breach Investigation Goes On, Things are Even Worse
LastPass, owned by GoTo (formerly LogMeIn) and with over 30…
YouTube Video Causes Pixel Smartphones to Reboot
Users have found that Pixel smartphones powered by Google Tensor…
The Researcher Hacked His Own Bank Account by Imitating a Voice with AI
The journalist Vice Motherboard Joseph Cox hacked the bank account…
Nearly 50% of Cybersecurity Leaders Will Change Jobs by 2025
According to a new report from Gartner, by 2025, nearly…
Hackers Broke into Activision’s Slack and Stole Data
Activision, the publisher of computer games (including the Call of…
Cybersecurity Experts Discovered a New Stealc Infostealer
ekoia experts report that a new infostealer, Stealc, has appeared…
Hackers Attacked GoDaddy and Stayed on the Company’s Systems for Several Years
One of the world’s largest hosters and domain name registrars,…
FatalRAT Malware Masks As Popular Apps in Google Ads
ESET experts have discovered the FatalRAT malware, which targets Chinese-speaking…
Bing’s Built-In AI Chatbot Misinforms Users and Sometimes Goes Crazy
More recently, Microsoft, together with OpenAI (the one behind the…
Domain Registrar Namecheap Sent Phishing Emails to Its Customers
Domain registrar Namecheap’s email was hacked last weekend and the…
Clop Operators Claim to Hack 130 Organizations Using GoAnywhere MFT Bug
Clop ransomware operators claim to be behind recent attacks on…
Hackers Are Promoting a Service That Allows Bypassing ChatGPT Restrictions
Check Point researchers say that the OpenAI API is poorly…
