A critical vulnerability in CrushFTP, identified as CVE-2024-4040, has been actively exploited in the wild. It allows attackers to perform unauthenticated remote code execution on vulnerable servers.
Source: GBHackers
CrushFTP Vulnerability Exploited in Wild to Execute Remote Code
- Chinese Nationals Arrested for Laundering $73 Million in Pig Butchering Crypto Scam
- Week in review: New Black Basta’s social engineering campaign, passing the CISSP exam in 6 weeks
- Grandoreiro Banking Trojan Resurfaces, Targeting Over 1,500 Banks Worldwide
- Enhanced Security for Enterprises: Google Launches Google Threat Intelligence
- Hackers Exploiting Docusign With Phishing Attack To Steal Credentials