News

Bleeping Computer

GoAnywhere MFT zero-day vulnerability lets hackers breach servers

The developers of the GoAnywhere MFT file transfer solution are warning customers of zero-day remote code execution vulnerability on exposed administrator consoles. GoAnywhere is a secure web file ...
CSOonline

IBM launches open-source detection and response framework for MFT attacks

The goal is to help defenders more quickly detect attacks enabled by managed file transfer application vulnerabilities and provide an incident response playbook. Over the past several years, multiple ...
Bleeping Computer

Exploit released for actively exploited GoAnywhere MFT zero-day

Exploit code has been released for an actively exploited zero-day vulnerability affecting Internet-exposed GoAnywhere MFT administrator consoles. GoAnywhere MFT is a web-based and managed file ...
Business Wire

CyberCube report: MOVEit attacks shine light on cyber (re)insurance industry’s blind spots

LONDON--(BUSINESS WIRE)--Key lessons can be learned from Cl0p’s MOVEit attacks, according to analysis by leading cyber analytics firm CyberCube. The ongoing cybersecurity incident known as the global ...
The Hacker News

New HybridPetya Ransomware Bypasses UEFI Secure Boot With CVE-2024-7344 Exploit

HybridPetya ransomware exploits CVE-2024-7344 to bypass UEFI Secure Boot, encrypts NTFS MFT, and demands $1,000 Bitcoin ...
CSOonline

Clop ransomware dominates ransomware space after MOVEit exploit campaign

The fast-rising Clop ransomware gang is capitalizing on compromising a single environment, underscoring the need to assess security of software supply chains. The number of ransomware attacks in July ...