The Security Blog From Gridinsoft

Ukraine's Biggest Cellular Carrier Kyivstar Hacked

Kyivstar, Ukraine’s Biggest Cell Carrier, Hacked

On Tuesday, December 12, 2023, Ukraine’s largest cellular operator Kyivstar got its network infrastructure ruined. This is a result of…

New Apache Struts 2 Vulnerability Allows for RCE

A newly discovered critical security flaw in Apache Struts 2, a widely used open-source web application framework, has spurred an…

Malicious Loan Apps in Play Store Decieved 12M Users

Eighteen malicious loan apps on the Google Play Store, posing as legitimate financial services, have scammed users. They offer high-interest-rate…

PoolParty Injection Techniques Circumvent EDR Solutions

A set of process injection techniques, named PoolParty, was presented at the Black Hat Europe 2023 conference. A set of…

WordPress Critical Vulnerability Fixed in Patch 6.4.2

WordPress has rolled out version 6.4.2, addressing a critical remote code execution (RCE) vulnerability. Discovered by the project’s security team,…

Atomic Energy Organization of Iran

Hacktivists Stole 100,000 Emails from Atomic Energy Organization of Iran

The Atomic Energy Organization of Iran (AEOI) reported that the…

GitHub repositories spread malware

Thousands of GitHub Repositories Spread Malware That Is Disguised as Exploits

Experts from the Leiden Institute for Advanced Computer Science have…

vulnerability in Apache Commons Text

New Vulnerability in Apache Commons Text Is Already Being Attacked by Hackers

According to WordPress security firm Defiant, attempts have already been…

Ransom Cartel and REvil

Researchers Linked Ransom Cartel members to Famous Hack Group REvil

Experts from the Palo Alto Network analysed the Ransom Cartel…

New PowerShell Backdoor

New PowerShell Backdoor Masquerades as a Windows Update

Cybersecurity experts from SafeBreach have found a new, previously undocumented…

Weak block cipher

Weak Block Cipher in Microsoft Office 365 Leads to Message Content Disclosure

WithSecure (formerly F-Secure Business) researchers claim that the content of…

DeadBolt decryption keys

Police Swindle Decryption Keys from DeadBolt Ransomware Gang

The Dutch National Police, together with information security specialists from…

DDOSIA pays volunteers

Russian DDOSIA Project Pays Volunteers to Participate in DDOS Attacks on Western Companies

Radware experts discovered the DDOSIA crowdsourcing DDoS project, in which…

0-day in Microsoft Exchange

Another 0-Day Bug Was Found in Microsoft Exchange, and LockBit Ransomware Operators Are Exploiting It

Although Microsoft still hasn’t fixed the ProxyNotShell vulnerabilities found in…

Fake Adult Sites

Fake Sites for Adults Destroy User Data

Experts from the Cyble company have discovered a number of…

Meta and Chinese Apps

Meta Finds over 400 Chinese Apps That Stole Data from 1 million Users

Meta has sued several Chinese companies (including HeyMods, Highlight Mobi…

XDSpy hacker group

Hacker Group XDSpy Distributes Malware in Russia under the Guise of Subpoenas for the Army

In early October, Kaspersky Lab experts recorded a targeted attack…

AI Assistant

Hello! 👋 How can I help you today?