The Security Blog From Gridinsoft

FIN8 created a new Backdoor to inject Noberus Ransomware

FIN8 Updated Sardonic Backdoor to Deliver Noberus Ransomware

FIN8, an infamous group of cybercriminals, has updated its backdoor malware to avoid being detected. They made improvements and prepared…

Citrix and Adobe Vulnerabilities Under Active Exploitation

Citrix was able to patch a zero-day vulnerability, while Adobe warns of attacks using ColdFusion Zero-Day and releases an urgent…

Trojanized TeamViewer Installer Spreads njRAT

Threat actors reportedly started using fake TeamViewer to distribute malware. Their particular favourite for the final payload is the infamous…

Hundreds of Military and Intelligence Agencies Uploaded Data to VirusTotal

An employee of the Google-owned platform VirusTotal accidentally uploaded a file with the names, email addresses and other data of…

WormGPT Helps Cybercriminals to Launch Sophisticated Phishing Attacks

SlashNext noticed that cybercriminals are increasingly using generative AI in their phishing attacks, such as the new WormGPT tool. WormGPT…

REvil deceived its partners

Hack group REvil deceived their partners due to a backdoor

The researchers found that the creators of REvil deceived their…

FBI and the key from REvil

FBI Kept Secret Key To Decrypt Data After REvil Attacks

Journalists of The Washington Post found out how the FBI…

BlackMatter attacked NEW Cooperative

BlackMatter ransomware attacked American farmers from NEW Cooperative

The BlackMatter ransomware attacked the American farmers organization NEW Cooperative,…

Hoster Epik hack

Epik hoster hack affected 15 million users, not just the company’s clients

Last week, Anonymous hacktivists reported about hack of the database…

utility for decrypting data after REvil

Added utility for decrypting data after REvil attacks

The Romanian company Bitdefender has published a universal utility for…

Anonymous attacked Epik

Anonymous hacktivists attacked the Epik hoster with the right-wing radical sites

Anonymous hacktivists attacked into the database of the domain registrar…

Site Isolation in Google Chrome

SpookJS Attack Allows to Bypass Site Isolation In Google Chrome

A group of scientists from universities in Australia, Israel and…

REvil resumed attacks

REvil ransomware resumed attacks

Last week, the infrastructure of REvil (Sodinokibi) returned online after…

fresh vulnerability in Ghostscript

PoC exploit published for fresh vulnerability in Ghostscript

A PoC exploit for a fresh vulnerability in Ghostscript was…

The US authorities accused Ukrainian

US authorities accused Ukrainian citizen of running a brute force botnet

The US authorities accused the Ukrainian citizen of hacking: namely,…

REvil servers back online

Servers of the hack group REvil are back online

In July 2021, the infrastructure of REvil (Sodinokibi) was turned…

FBI experts and sextortion

FBI experts say that this year “sextortion” brought scammers more than $8 million

Experts from the FBI Internet Fraud Complaints Center (IC3) spoke…

AI Assistant

Hello! 👋 How can I help you today?