CVE-2025-10035 in GoAnywhere MFT is being exploited by ransomware group Storm-1175 Vulnerability enables unauthenticated remote code execution; Medusa ransomware was deployed in at least one case ...

CVE-2025-10035 is a critical deserialization flaw in GoAnywhere MFT Fortra urges users to patch immediately; no confirmed in-the-wild exploitation yet Vulnerability may allow command injection if ...

The threat actor, tracked as Storm-1175, has previously been characterized by Microsoft as a financially motivated group based in China. Microsoft disclosed Monday that it has observed “active ...

The number of victims affected by a mass-ransomware attack, caused by a bug in a popular data transfer tool used by businesses around the world, continues to grow as another organization tells ...

Exploit code is now available for a critical authentication bypass vulnerability in Fortra's GoAnywhere MFT (Managed File Transfer) software that allows attackers to create new admin users on ...

The developers of the GoAnywhere MFT file transfer solution are warning customers of zero-day remote code execution vulnerability on exposed administrator consoles. GoAnywhere is a secure web file ...

The list of victims compromised through exploits of a vulnerability in the file transfer platform continues to grow, with data security vendor Rubrik becoming the latest to acknowledge a data breach.

Barely 12 months since a zero-day in the Fortra GoAnywhere managed file transfer (MFT) tool resulted in a surge in cyber attacks and global infamy for the Clop (aka Cl0p) ransomware gang, users of the ...

Software maker Fortra told its corporate customers that their data was safe — even when it wasn’t — following a ransomware attack on its systems, TechCrunch has learned. As we have been reporting, the ...

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology. Linoma Software GoAnywhere MFT Standard lets you add on ...

Community Health Systems filed with the Securities and Exchange Commission that it was notified by a third-party vendor for secure file transfer of an incident that resulted in unauthorized disclosure ...