Skip to main content

Tag: fortra

5 articles

CVE-2025-10035: Stunning Critical Timeline Exposed

CVE-2025-10035: Stunning Critical Timeline Exposed

Fortra’s timeline reveals CVE-2025-10035 in GoAnywhere MFT was actively exploited from at least Sept. 11, 2025 — a wake-up call to patch immediately, audit transfer logs, and lock down MFT servers before attackers move laterally or steal data.

Analyst 207
Medusa ransomware: Exclusive Critical Alert for Enterprises

Medusa ransomware: Exclusive Critical Alert for Enterprises

Microsoft warns Medusa ransomware is actively exploiting a critical GoAnywhere file-transfer flaw, pushing organizations to act fast or risk serious disruption. If you use GoAnywhere, inventory instances, apply patches now, isolate affected systems, and hunt for signs of compromise before attackers turn this trusted tool into a catastrophe.

Analyst 207
GoAnywhere managed file transfer Exclusive Must-Have Fixes

GoAnywhere managed file transfer Exclusive Must-Have Fixes

A critical Perfect‑10 RCE in Fortra’s GoAnywhere MFT is being actively exploited, leaving thousands of internet‑facing instances at risk — patch immediately, isolate exposed servers, and audit logs to stop data theft or ransomware. This crisis spotlights gaps in vendor disclosure and supply‑chain risk, so organizations and vendors must coordinate fast to prevent widespread breaches.

Analyst 207
GoAnywhere zero-day: Stunning Critical Risk Exposed

GoAnywhere zero-day: Stunning Critical Risk Exposed

A WatchTowr Labs investigation suggests attackers were exploiting a CVSS 10.0 flaw in Fortra’s GoAnywhere MFT as early as Sept. 10—seven days before public disclosure—forcing organizations to scramble from defense to damage control. If true, this zero-day is a wake-up call to inventory, patch, and assume breach now before the quiet access turns catastrophic.

Analyst 207
GoAnywhere MFT Critical: Urgent Patch Warning

GoAnywhere MFT Critical: Urgent Patch Warning

Fortra has warned of a critical “10/10” flaw in GoAnywhere MFT that’s widely used across enterprises and may already be weaponized — if you run it, treat this as an emergency: inventory systems, apply patches or mitigations now, and hunt for signs of compromise.

Analyst 207