The Security Blog From Gridinsoft
Hackers Published an Exploit for a Dangerous Vulnerability in GoAnywhere MFT
Hackers published on the network an exploit for a zero-day vulnerability that is actively used in the GoAnywhere MFT administration…
ESXiArgs Ransomware Launches Massive Attacks on VMware ESXi Servers
Hosting providers and the French CERT warn that more than 3,200 VMware ESXi servers were compromised by the new ESXiArgs…
IceBreaker Backdoor Emerged, Exploiting New Phishing Way
A new player has appeared in cyberspace, with surprisingly new methods. A previously unknown group attacked gambling and online gaming…
Dangerous RCE Vulnerability in GTA Online Fixed
Rockstar Games has finally released a patch for a dangerous RCE vulnerability in GTA Online that allowed loss of game…
Cryptocurrency Scam “Pig Butchering” Penetrated the Apple App Store and Google Play Store
The Pig Butchering scam, a scam operation that specializes in fake investments in allegedly promising cryptocurrency projects, stocks, bonds, futures…
Extortionists hack into Cellmate men’s chastity belts
Last fall, researchers from Pen Test Partners reported on the insecurity of extremely unusual gadgets – Cellmate men’s chastity belts, manufactured by the Chinese company Qiui. Then analysts wrote that…
Nissan source code leaked due to admin: admin credentials
The source code for mobile apps and internal tools for Nissan’s North American division has leaked. The leak was due to the fact that the specialists of the automaker incorrectly…
Storming of the US Congress poses a serious threat to cybersecurity
Storming of the US Congress in Washington, in addition to political consequences, may pose a cybersecurity threat, experts say. On Wednesday, January 6, supporters of Donald Trump stormed the Capitol…
Researcher discovered vulnerability in Telegram, which allows to locate user
The researcher discovered a vulnerability in Telegram. The fact is that the messenger provides users with the “People Nearby” function, thanks to which it is possible to determine the location…
Millions of Windows 7 users refuse to upgrade to Windows 10
In early 2020, Microsoft officially ended support for the Windows 7 operating system. However, millions of Windows 7 users refuse to upgrade to Windows 10. Prior to the end of…
Nintendo spied on a hacker who prepared attack on the 3DS console
The TorrentFreak magazine reported about leaked documents that shed light on how a few years ago Nintendo arranged a large-scale surveillance of the hacker who prepared attack on the 3DS…
Microsoft says SolarWinds hackers hunted for access to cloud resources
Microsoft continues to investigate the supply chain attack that SolarWinds and its customers have suffered this year. Microsoft analysts reported that SolarWinds hackers were hunting for access to cloud resources.…
New web skimmer found in Shopify, BigCommerce, Woocommerce and Zencart stores
Sansec experts have discovered a new multi-platform MageCart skimmer capable of stealing payment information from compromised stores. The web skimmer works in Shopify, BigCommerce, Zencart and Woocommerce stores (even if…
Researcher Earned More than $ 2000000 on HackerOne
HackerOne representatives said that Romanian cybersecurity specialist Cosmin Iordach (@inhibitor181) became the first researcher in the history of the project, who earned more than $ 2000000 from bug bounty. He…
SolarWinds hack allowed Russian attackers to infiltrated dozens of US Treasury Department mailboxes
US Senator Ron Wyden, a member of the US Senate Finance Committee, said that hackers, standing behind the SolarWinds hack, compromised dozens of US Treasury Department mailboxes. The statement came…
Apple, Google, Microsoft and Mozilla block MitM certificate of the Kazakhstan government
In early December, Kazakhstan authorities for the third time attempted to intercept all traffic of the users, including secure HTTPS connections. However, Apple, Google, Microsoft, and Mozilla responded by blocking…
Microsoft: Supernova and CosmicGale malware detected on systems running SolarWinds
Continue studies oт large-scale attack on the supply chain, for which attackers compromised SolarWinds and its Orion platform. It seems that experts have now discovered another hack group that used…