#storm-1175

[ follow ]
#cve-2025-10035 #medusa-ransomware #goanywhere-mft #deserialization-vulnerability #fortra-goanywhere
#cve-2025-10035
fromThe Hacker News
2 days ago
Information security

From Detection to Patch: Fortra Reveals Full Timeline of CVE-2025-10035 Exploitation

A deserialization vulnerability in GoAnywhere MFT's License Servlet (CVE-2025-10035) has been actively exploited since September 11, enabling unauthenticated command injection and Medusa ransomware deployment.
fromThe Hacker News
5 days ago
Information security

Microsoft Links Storm-1175 to GoAnywhere Exploit Deploying Medusa Ransomware

Critical deserialization vulnerability CVE-2025-10035 in Fortra GoAnywhere enabled Storm-1175 to deploy Medusa ransomware via RMM tools, RCE, and lateral movement.
more#cve-2025-10035
fromSecurityWeek
5 days ago

Fortra GoAnywhere MFT Zero-Day Exploited in Ransomware Attacks

A recently patched vulnerability in Fortra GoAnywhere MFT (Managed File Transfer) was exploited as a zero-day by a Chinese ransomware group, Microsoft reports. The flaw, tracked as CVE-2025-10035 (CVSS score of 10/10), was disclosed on September 18, when Fortra rolled out patches for it. A deserialization issue in the application's license servlet, the bug can be exploited for command injection and remote code execution (RCE).
Information security
[ Load more ]