The Security Blog From Gridinsoft

CISA Has Added Five Vulnerabilities To Its KEV List

CISA Adds 5 Exploited Vulnerabilities, Patch ASAP

CISA recently updated its Known Exploited Vulnerabilities catalog, adding five vulnerabilities that are actively being exploited. These affect Advantive VeraCore,…

SmartLoader, LummaStealer Abuse Fake GitHub Repositories

A new campaign has been discovered where malicious actors are leveraging AI to craft fake GitHub repositories. They are used…

Python JSON Logger Vulnerability Exposes Millions of Users

The CVE-2025-27607 vulnerability was discovered in Python JSON Logger. Its exploitation required no user interaction beyond a standard dependency installation.…

VMWare ESXi Vulnerabilities Exploited, Patch Now

Broadcom has published a report on the discovery of three critical vulnerabilities in their recently acquired VMWare ESXi product lineup.…

Frauds Promote Trading Scam With AI Bots in YouTube Ads

Attackers use AI-generated videos featuring credible crypto experts to create YouTube videos promoting trading scam and the deployment of smart…

Bootkit named Bootkitty discovered in the wild, targeting Linux OS

Bootkitty Bootkit Discovered in the Wild, Targeting Linux

Cybersecurity researchers have reported the creation of a first-of-its-kind UEFI…

Scammers Use Corrupted Word Documents In Phishing Attacks

Corrupted Word Documents Phishing Attacks Avoid Security Checks

Hackers found a new way of bypassing the email security…

CISA Alerts About Critical Vulnerability Under Active Exploitation

CISA Urges to Patch Critical Array Networks Vulnerabilities

The US cybersecurity agency CISA warned about the ongoing exploitation…

Meta Removes 2 Million Scam Accounts

Meta Deletes 2 Million Accounts Related to Scams

Meta has intensified its fight against pig butchering scams, removing…

Researchers Found New NodeStealer Samples, Based on Python

NodeStealer Returns With Python Codebase, More Functions

Researchers have identified an updated version of NodeStealer, now rewritten…

What is email phishing scams from Meta Security?

Meta Security Email Phishing Scams Explained

Attackers are targeting users of Meta services with phishing attacks.…

GitLab Releases Security Update, Patches Authentication Bypass Flaw

GitLab Fixes Critical Kubernetes Agent Takeover Vulnerability

GitLab has released another update that fixes varying degrees of…

FakeBat Malware Exploits Google Search Ads, Again

FakeBat Loader is Back With New Tactics and Payload

After a brief decline in loader-based malvertising, the FakeBat loader…

Ivanti EPM RCE vulnerability fixed, patch now

RCE Vulnerability in Ivanti Endpoint Manager Uncovered, Patch Now

In the latest update release, Ivanti disclosed the selection of…

Hacker Uploads Data Leaked in MOVEit Breaches

Hacker Leaks Corporate Data Stolen in 2023 MOVEit Breaches

The hacker, known as Nam3L3ss, posted the data of over…

BBVA Bank Hacked, Data Posted on the Darknet Forum

Hacker Leaks BBVA Bank Data, Including User Details

On November 11, 2024 a hacker known as Gatito_FBI_NZ published…

"Verify you are human" scam website explained

Verify you are Human Scam

While browsing the Web, you can occasionally get to a…

AI Assistant

Hello! 👋 How can I help you today?