The Security Blog From Gridinsoft

njRAT Hides in Trojanized TeamViewer Installers

Trojanized TeamViewer Installer Spreads njRAT

Threat actors reportedly started using fake TeamViewer to distribute malware. Their particular favourite for the final payload is the infamous…

Hundreds of Military and Intelligence Agencies Uploaded Data to VirusTotal

An employee of the Google-owned platform VirusTotal accidentally uploaded a file with the names, email addresses and other data of…

WormGPT Helps Cybercriminals to Launch Sophisticated Phishing Attacks

SlashNext noticed that cybercriminals are increasingly using generative AI in their phishing attacks, such as the new WormGPT tool. WormGPT…

US Military Emails Leaked Massively Due to the Typo

Email letters sent to the US military addresses ended up on similarly-named Mali emails because of the domain name typo.…

Microsoft “nOAuth” is Vulnerable to Simple Email Spoofing

In June, researchers revealed a vulnerability in Azure Active Directory and third-party apps called “nOAuth,” that could result in a…

BlackMatter attacked NEW Cooperative

BlackMatter ransomware attacked American farmers from NEW Cooperative

The BlackMatter ransomware attacked the American farmers organization NEW Cooperative,…

Hoster Epik hack

Epik hoster hack affected 15 million users, not just the company’s clients

Last week, Anonymous hacktivists reported about hack of the database…

utility for decrypting data after REvil

Added utility for decrypting data after REvil attacks

The Romanian company Bitdefender has published a universal utility for…

Anonymous attacked Epik

Anonymous hacktivists attacked the Epik hoster with the right-wing radical sites

Anonymous hacktivists attacked into the database of the domain registrar…

Site Isolation in Google Chrome

SpookJS Attack Allows to Bypass Site Isolation In Google Chrome

A group of scientists from universities in Australia, Israel and…

REvil resumed attacks

REvil ransomware resumed attacks

Last week, the infrastructure of REvil (Sodinokibi) returned online after…

fresh vulnerability in Ghostscript

PoC exploit published for fresh vulnerability in Ghostscript

A PoC exploit for a fresh vulnerability in Ghostscript was…

The US authorities accused Ukrainian

US authorities accused Ukrainian citizen of running a brute force botnet

The US authorities accused the Ukrainian citizen of hacking: namely,…

REvil servers back online

Servers of the hack group REvil are back online

In July 2021, the infrastructure of REvil (Sodinokibi) was turned…

FBI experts and sextortion

FBI experts say that this year “sextortion” brought scammers more than $8 million

Experts from the FBI Internet Fraud Complaints Center (IC3) spoke…

Atlassian Confluence vulnerability

Atlassian Confluence vulnerability was exploited to install miners

In late August, Atlassian released a hotfix for a Confluence…

Dangerous bug in WhatsApp

Dangerous bug in WhatsApp could lead to disclosure of user data

Check Point specialists spoke about a dangerous bug they discovered…

AI Assistant

Hello! 👋 How can I help you today?