Fortra News Articles
Recent news articles refferecing the vendors vulnerabilities.
Why Supply Chain Security Now Needs Threat-Informed TPRM
As attackers exploit the supply chain, organizations that fail to integrate CTI and TPRM risk being blindsided by the vulnerabilities of their partners.
IT Security GuruCVE-2025-10035Hidden Cost of MFT Vulnerabilities: Why CVE-2025-10035 Demands a New Security Playbook
When Fortra disclosed CVE-2025-10035 in GoAnywhere MFT last month, many security teams likely experienced a familiar sinking feeling. Another critical vulnerability. Another emergency patch cycle. Another...
Medusa ransomware used during exploitation of GoAnywhere file transfer bug, Microsoft says
Cybercriminals are using the Medusa ransomware strain during exploitation of a vulnerability in Fortra's GoAnywhere file transfer tool.
The Hacker NewsCVE-2025-10035From Detection to Patch: Fortra Reveals Full Timeline of CVE-2025-10035 Exploitation
Fortra confirms GoAnywhere MFT flaw CVE-2025-10035 exploited since September 11 to deploy ransomware.
Security AffairsCVE-2025-10035GoAnywhere MFT zero-day used by Storm-1175 in Medusa ransomware campaigns
Storm-1175 exploits GoAnywhere MFT flaw CVE-2025-10035 in Medusa attacks, allowing easy remote code execution via License Servlet bug.
Medusa Ransomware Exploits Fortra GoAnywhere Bug
Researchers say exploitation of CVE-2025-10035 requires a private key, and it's unclear how Storm-1175 threat actors pulled this off.
The Cyber ExpressCVE-2025-10035Attackers Deployed Medusa Ransomware Via GoAnywhere Zero-Day
Cybercriminals exploited a critical deserialization flaw in Fortra’s GoAnywhere Managed File Transfer (MFT) tool—tracked as CVE-2025-10035—to drop Medusa
Cyber PressCVE-2025-10035GoAnywhere 0-Day RCE Exploited in the Wild to Deploy Medusa Ransomware
Security researchers observed that the Storm-1175 group weaponized this flaw to achieve remote code execution (RCE) on internet-facing deployments
Cyber Security NewsCVE-2025-10035GoAnywhere 0-Day RCE Vulnerability Exploited in the Wild to Deploy Medusa Ransomware
A critical deserialization flaw in GoAnywhere MFT’s License Servlet, tracked as CVE-2025-10035, that has already been weaponized by the Storm-1175 group to execute Medusa ransomware.
GBHackers NewsCVE-2025-10035GoAnywhere 0-Day RCE Actively Exploited to Deliver Medusa Ransomware
A critical zero-day vulnerability in GoAnywhere MFT’s License Servlet is being actively exploited to deploy Medusa ransomware.
The Hacker NewsCVE-2025-10035Microsoft Links Storm-1175 to GoAnywhere Exploit Deploying Medusa Ransomware
Microsoft links Storm-1175 to GoAnywhere flaw CVE-2025-10035, exploited since September for Medusa ransomware.
Microsoft: Critical GoAnywhere bug exploited in ransomware attacks
A cybercrime group, tracked as Storm-1175, has been actively exploiting a maximum severity GoAnywhere MFT vulnerability in Medusa ransomware attacks for nearly a month.
Investigating active exploitation of CVE-2025-10035 GoAnywhere Managed File Transfer vulnerability | Microsoft Security Blog
Storm-1175, a financially motivated actor known for deploying Medusa ransomware and exploiting public-facing applications for initial access, was observed exploiting the deserialization vulnerability in GoAnywhere MFT's License Servlet, tracked as CVE-2025-10035. We are publishing this blog post to ...
Maximum severity GoAnywhere MFT flaw exploited as zero day
Hackers are actively exploiting a maximum severity vulnerability (CVE-2025-10035) in Fortra's GoAnywhere MFT that allows injecting commands remotely without authentication.
The Hacker NewsCVE-2025-10035Fortra GoAnywhere CVSS 10 Flaw Exploited as 0-Day a Week Before Public Disclosure
Fortra GoAnywhere CVE-2025-10035 was exploited a week before disclosure, enabling pre-authentication remote code execution.
Fortra GoAnywhere Bug Allows Command Injection
Exploitation of the flaw, tracked as CVE-2025-10035, is highly dependent on whether systems are exposed to the Internet, according to Fortra.
Fortra warns of max severity flaw in GoAnywhere MFT’s License Servlet
Fortra has released security updates to patch a maximum severity vulnerability in GoAnywhere MFT's License Servlet that can be exploited in command injection attacks.
The Hacker NewsCVE-2025-10035Fortra Releases Critical Patch for CVSS 10.0 GoAnywhere MFT Vulnerability
Fortra fixes CVE-2025-10035, a CVSS 10.0 deserialization flaw in GoAnywhere MFT; update to version 7.8.4 to block remote command injection.
Horizon3.aiCVE-2024-0204CVE-2024-0204: Check Critical Fortra GoAnywhere MFT Authentication Bypass with NodeZero™️ Now!
On 22 January, Fortra issued an advisory stating that versions of its GoAnywhere Managed File Transfer (MFT) product suffer from an authentication bypass vulnerability.
Fortra fixes critical FileCatalyst Workflow hardcoded password issue
Fortra is warning of a critical hardcoded password flaw in FileCatalyst Workflow that could allow attackers unauthorized access to an internal database to steal data and gain administrator privileges.
Help Net SecurityCVE-2024-6633Critical Fortra FileCatalyst Workflow vulnerability patched (CVE-2024-6633) - Help Net Security
Orgs using Fortra's FileCatalyst Workflow are urged to upgrade to prevent attackers accessing an internal database via CVE-2024-6633.
Help Net SecurityCVE-2024-5276PoC exploit for critical Fortra FileCatalyst flaw published (CVE-2024-5276) - Help Net Security
A critical SQL injection Vulnerability in Fortra FileCatalyst Workflow (CVE-2024-5276) has been patched, a PoC is already available online.
Exploit for critical Fortra FileCatalyst Workflow SQLi flaw released
The Fortra FileCatalyst Workflow is vulnerable to an SQL injection vulnerability that could allow remote unauthenticated attackers to create rogue admin users and manipulate data on the application database.
CybersecurityNewsCVE-2024-25153PoC Published for Critical RCE Vulnerability in Fortra FileCatalyst
A proof of Concept (PoC) has been published for a critical RCE vulnerability identified in Fortra's FileCatalyst software.