The Security Blog From Gridinsoft

GitLab Releases Security Update, Patches Authentication Bypass Flaw

GitLab Fixes Critical Kubernetes Agent Takeover Vulnerability

GitLab has released another update that fixes varying degrees of vulnerabilities. Users are advised to apply the updates as soon…

FakeBat Loader is Back With New Tactics and Payload

After a brief decline in loader-based malvertising, the FakeBat loader has re-emerged as a notable threat. This loader delivers follow-up…

RCE Vulnerability in Ivanti Endpoint Manager Uncovered, Patch Now

In the latest update release, Ivanti disclosed the selection of critical vulnerabilities in their Endpoint Manager software. Among the fixed…

Hacker Leaks Corporate Data Stolen in 2023 MOVEit Breaches

The hacker, known as Nam3L3ss, posted the data of over 1000 corporations, leaked in 2023 during the active exploitation of…

Hacker Leaks BBVA Bank Data, Including User Details

On November 11, 2024 a hacker known as Gatito_FBI_NZ published an extensive pack of data they leaked from BBVA Bank…

Critical RCE vulnerability affects thousands of WordPress sites

Critical RCE Vulnerability in GiveWP WordPress Plugin

A critical vulnerability has been discovered in the GiveWP WordPress…

Google Pixel Phones Contain a Vulnerable Pre-Installed App

Google Pixel Devices Shipped with Vulnerable App

Recent research has uncovered a vulnerable app in the Android…

Windows TCP/IP RCE Vulnerability Impacts All Systems with IPv6 Enabled

Critical Windows TCP/IP Vulnerability Uncovered, Patch Now

A critical vulnerability has been discovered in the Windows TCP/IP…

Boost AMD Ryzen Gaming Performance by Fixing Windows 11 Bug

AMD Ryzen CPUs Slowed Down by Windows 11 Bug

Recent release of the AMD Ryzen 9000 CPU lineup created…

EDRKillShifter Malware Discovered, Used by RansomHub Gang

EDRKillShifter Malware: New EDR Killer Tool in Ransomware Actors’ Toolkit

Recent research uncovers a new anti-EDR utility in the arsenal…

SAP Releases Fixes for 17 Vulnerabilities, 2 Critical Flaws

Critical SAP Auth Bypass and SSRF Flaws Fixed, Update Now

SAP, the developer of business management software, released a huge…

1Password Vulnerability Let Attackers Exfiltrate Vault Items

1Password Vulnerability for MacOS Causes Credentials Leak

A critical vulnerability was discovered in 1Password that allows attackers…

Chinese Cybercriminals Are Exploiting A Vulnerability In Windows 10

Windows COM Vulnerability Exploited by Chinese Hackers

A vulnerability in Windows COM, first discovered in 2018, has…

Critical Apache OFBiz Flaw Allows Unauthorized Code Execution

Apache OFBiz RCE Vulnerability Discovered, Patch Now

A vulnerability, CVE-2024-38856, has been discovered in Apache OFBiz that…

Ubiquiti Wi-Fi Cameras Flaw Exposes Informaiton, Allows for DDoS Attacks

Ubiquiti G4 Vulnerability Discovered, Allowing for DDoS Attacks

Researchers found a flaw in Ubiquiti G4 Wi-Fi cameras, that…

Erikos Scam Shops Abuse Meta Ads

Eriakos Scam in Facebook Ads Targets Personal and Banking Data

Fraudsters are using fake websites and Facebook Ads to steal…

BangBros Drops 12 Million Records About Users

BangBros Leak Exposes 12 Million User Records

BangBros, a studio and platform specializing in adult content, leaked…