The Security Blog From Gridinsoft

New Apache Struts 2 RCE Vulnerability Discovered

New Apache Struts 2 Vulnerability Allows for RCE

A newly discovered critical security flaw in Apache Struts 2, a widely used open-source web application framework, has spurred an…

Malicious Loan Apps in Play Store Decieved 12M Users

Eighteen malicious loan apps on the Google Play Store, posing as legitimate financial services, have scammed users. They offer high-interest-rate…

PoolParty Injection Techniques Circumvent EDR Solutions

A set of process injection techniques, named PoolParty, was presented at the Black Hat Europe 2023 conference. A set of…

WordPress Critical Vulnerability Fixed in Patch 6.4.2

WordPress has rolled out version 6.4.2, addressing a critical remote code execution (RCE) vulnerability. Discovered by the project’s security team,…

AeroBlade TA Spies On U.S. Aerospace Industry

Cybersecurity experts have uncovered a sophisticated cyberespionage campaign targeting a prominent U.S. aerospace organization. The threat actor, identified as AeroBlade,…

Russian hack group SEABORGIUM

Disrupting SEABORGIUM’s Ongoing Phishing Operations

Microsoft Threat Intelligence Center (MSTIC) experts announce the disruption of…

Researcher Hacked Starlink Terminal

Researcher Hacks Starlink Terminal With $25 Homemade Board

Lennert Wouters, a researcher at the Catholic University of Leuven,…

backdoor in MiMi messenger

Chinese Hackers Injected a Backdoor into the MiMi Messenger

SEKOIA and Trend Micro specialists published reports on the activity…

Cuba and ROMCOM RAT

Cuba Ransomware Operators Use Previously Unknown ROMCOM RAT

Palo Alto Networks reports that the Cuba ransomware operators have…

auto parts manufacturer attacked

Auto Parts Manufacturer Attacked by Three Different Ransomware in Two weeks

Sophos experts told about an interesting case when an unnamed…

Microsoft fixed DogWalk

Microsoft fixes DogWalk bug as part of Patch Tuesday

Microsoft fixed more than 120 vulnerabilities this month, including the…

LOLI Stealer malware

IS Specialists Discovered a New Version of Malware from Russian Hackers LOLI Stealer

Cyble Research Labs specialists found a sample of malware in…

Slack resets user passwords

Slack Is Resetting User Passwords Due to a Bug

Slack developers have notified about 0.5% of users that they…

Twilio phishing attack

Twilio Falls Victim To Phishing Attack

Twilio, a tech giant from San Francisco, became a victim…

Malware to bypass protection

Most Often, Malware to Bypass Protection Impersonates Skype, Adobe Acrobat and VLC

VirusTotal analysts presented a report on the methods that malware…

ParseThru and Go Vulnerability

ParseThru Vulnerability Threatens Go-Based Applications

Researchers have discovered a vulnerability called ParseThru — the bug…

BlackCat and Creos Luxembourg

BlackCat Says It Attacked Creos Luxembourg, European Gas Pipeline Operator

The operators of the BlackCat ransomware (aka ALPHV) claimed responsibility…

AI Assistant

Hello! 👋 How can I help you today?