GoAnywhere

2 minute read

Security

Medusa Ransomware Exploiting GoAnywhere MFT Flaw, Confirms Microsoft

Latest reports suggest the critical GoAnywhere MFT vulnerability (CVE-2025-10035, CVSS 10.0) is actively exploited by the Medusa ransomware gang for unauthenticated RCE. Patch immediately.

byDeeba Ahmed

October 7, 2025

Critical CVSS 10 Flaw in GoAnywhere File Transfer Threatens 20,000 Systems

3 minute read

Security

Critical CVSS 10 Flaw in GoAnywhere File Transfer Threatens 20,000 Systems

Urgent warning for Fortra GoAnywhere MFT users. A CVSS 10.0 deserialization vulnerability (CVE-2025-10035) in the License Servlet allows command injection. Patch to v7.8.4 immediately to prevent system takeover.

byDeeba Ahmed

September 25, 2025

The Latest

Harvester APT Expands Spying Operations with New GoGra Linux Malware

Hackers Use Hidden Website Instructions in New Attacks on AI Assistants

Discord-Linked Group Accessed Anthropic’s Claude Mythos AI in Vendor Breach

K2view vs Broadcom For Test Data Management

GoAnywhere

Medusa Ransomware Exploiting GoAnywhere MFT Flaw, Confirms Microsoft

Critical CVSS 10 Flaw in GoAnywhere File Transfer Threatens 20,000 Systems

BreachLock Named Representative Vendor in the 2026 Gartner Market Guide for Adversarial Exposure Validation

The Ungoverned Workforce: Cybersecurity Insiders Finds 92% Lack Visibility Into AI Identities

Security Risk Advisors Purple Team Participants Can Now Earn CPE Credits

Mallory Launches AI-Native Threat Intelligence Platform, Turning Global Threat Data Into Prioritized Action

AI Future: The Leading International AI and Web3 Forum to Take Place in April