The Security Blog From Gridinsoft

Investment Scams on Facebook How Cybercriminals Filter and Target Victims

Investment Scams on Facebook: How Cybercriminals Filter and Target Victims

Investment scams continue to evolve in sophistication, with cybercriminals deploying increasingly complex methods to target potential victims. Recent research from…

BreachForums is Down, Admins Posted a PGP-Signed Message

BreachForums, an infamous Darknet forum, has gone offline recently, only to get back up with a worrying message on its…

$GROK Presale Scam: Crypto Investment Fraud

The $GROK Presale Scam tricks people into investing in a fake cryptocurrency by using Elon Musk’s name and his Grok…

CVE-2025-21605 Redis DoS Vulnerability Discovered, Patch Now

So Redis walks into a bar and the bartender asks, “Why so bloated?” Turns out Redis has been hitting the…

WordPress Ad-Fraud Plugins and the Scallywag Operation

Cybersecurity researchers have found a large-scale ad fraud scheme called “Scallywag”. It used WordPress plugins to generate massive fraudulent ad…

Telegram Captcha Exploits PowerShell to Spread Malware

Ross Ulbricht Telegram Captcha Scams On the Rise, Beware!

A new scam campaign has been detected, using a fake…

0-Click Cloudflare Deanonymization Attack Exploits Telegram, Signal, Discord And Other Apps

0-Click Cloudflare Deanonymization Vulnerability Discovered

A young security researcher has found a vulnerability in Cloudflare’s…

Zero-Click Exploit Targeting Samsung S23 and S24 Smartphones Discovered, Patch Now

Samsung Zero-Click Vulnerability Discovered, Update Now

Google Project Zero researcher reports on a Samsung zero-click vulnerability…

GayFemboy Mirai-Based Botnet Attacks Routers Through The Four-Faith Vulnerability

New Mirai Based Botnet Exploits Four-Faith Vulnerability

Researchers detected another IoT botnet based off of Mirai malware…

25 Chrome Extensions Hacked, Leaking Credentials of Over 2 Million Users

25 Chrome Extensions Compromised, Exposing 2M+ Users

A targeted attack on Chrome extensions publishers compromised the add-ons…

CVSS 9.9 Vulnerability in Apache Traffic Control Fixed, Update ASAP

Apache Traffic Control Critical SQLi Vulnerability Fixed

Apache Traffic Control platform got a critical security patch that…

LockBit 4.0 Ransomware Released, Launches Affiliate Hiring Campaign

Lockbit 4.0 Released, With New Infrastructure and Features

Lockbit ransomware group steps up with a new version of…

LockBit Ransomware Developer Arrested and Extradicted in Israel

LockBit Ransomware Developer Arrested and Extradicted in Israel

US authorities have detained a developer associated with the LockBit…

BeyondTrust Critical Flaw Actively Exploited, CISA Warns

BeyondTrust Remote Access Vulnerability Exploited, Update Now

BeyondTrust’s Privileged Remote Access (PRA) and Remote Support (RS) solutions…

Ledger wallet owners have been targeted by attackers, again

New Ledger Phishing Campaign Targets Recovery Phrases

Owners of popular hardware cryptocurrency wallets Ledger have become the…

Cleo File Transfer Vulnerabilities Are A New Ransomware Attack Vector

Cleo File Transfer Vulnerabilities Exploited by Cl0p Ransomware

Recent cybersecurity incidents have exposed critical vulnerabilities in Cleo’s file…

Aiocpa PyPI Package Targets Crypto Wallets

Aiocpa PyPI Package Targets Crypto Wallets

A malicious package named aiocpa was identified on the Python…

AI Assistant

Hello! 👋 How can I help you today?