The Security Blog From Gridinsoft

SugarGh0st Uses Spear Phishing to Attack Governments

SugarGh0st RAT Targets Uzbekistan and South Korea

A new malicious campaign employs SugarGh0st RAT to target government agencies. Artifacts in the decoy documents hint at a potential…

Dollar Tree Data Breach Impacting 2 Million People

Discount retailer Dollar Tree was hit by a data breach when third-party service provider Zeroed-In Technologies fell victim, affecting almost…

BLUFFS Bluetooth Vulnerability Threatens Billions of Devices

Eurecom has uncovered a series of exploits named “BLUFFS”, posing a significant threat to the security of Bluetooth sessions. These…

Okta Hack Exposes Data of All Support Customers

Back in mid-October 2023 Okta, one of the world’s largest identity providers, suffered a data breach. Security vulnerabilities in its…

Henry Schein was hacked twice by BlackCat ransomware

Henry Schein Global, a healthcare solutions provider, faced a persistent cybersecurity nightmare. The BlackCat/ALPHV ransomware gang is launching a second…

Comm100 Live Chat

Hackers Compromise Comm100 Live Chat to Attack a Supply Chain

The official installer of the Comm100 Live Chat SaaS application,…

former eBay executives

Judge Sentences Former eBay Executives to Jail Terms for Harassing Bloggers

Last week, two former eBay executives were sentenced to prison…

Malware in the Windows logo

Hack Group Witchetty Hides Malware in the Windows Logo

Symantec researchers have discovered a malicious campaign by the hacker…

Leaked LockBit builder

Hack Group Bl00Dy Is Already Using Leaked LockBit Builder

Researchers have discovered that the young ransomware group Bl00Dy is…

Lazarus attack macOS users

Lazarus Hackers Attack MacOS Users by impersonating Crypto[.]com

Sentinel One has discovered that the North Korean hacker group…

Ukrainian law enforcers arrested

Ukrainian Law Enforcers Arrested Hackers Who Sold More Than 30 million Accounts

Ukrainian law enforcers reported that they “neutralized” and arrested hackers…

fake dating site

Scammers Use Fake Dating Sites to Steal Money

Experts from ReasonLabs have discovered an unusual malicious scheme that…

fake notifications from CircleCI

Hackers Use CircleCI Fake Notifications to Access GitHub Accounts

GitHub warns that a large-scale phishing campaign aimed at users…

LockBit 3.0 Builder

LockBit 3.0 Builder leaked to the public

On September 21, 2022, a new Twitter user Ali Qushji…

Gamaredon Hack Group

Gamaredon Hack Group Uses New Malware to Attack Ukrainian Organizations

Cisco Talos analysts write that the Russian-speaking hack group Gamaredon…

keyloggers in phishing pages

Attackers Began to Embed Keyloggers in Phishing Pages

Analysts from the Cyble company recorded an interesting phishing campaign…

Lorenz and Mitel ransomware

Lorenz Ransomware Penetrates Company Networks through Mitel VoIP Products

Security firm Arctic Wolf has warned that Lorenz ransomware is…