"Critical Auth Bypass Exploit for Fortra GoAnywhere MFT Requires Immediate Patching"

January 23, 2024 at 11:16 PM

•

1 min read

"Critical Auth Bypass Exploit for Fortra GoAnywhere MFT Requires Immediate Patching" — Photo: BleepingComputer

TL;DR Summary

An exploit has been released for a critical authentication bypass vulnerability in Fortra's GoAnywhere MFT software, allowing attackers to create new admin users on unpatched instances. While Fortra silently patched the bug in December, a technical analysis and proof-of-concept exploit have now been published, raising concerns about potential attacks. This comes after the Clop ransomware gang breached over 100 organizations by exploiting a different flaw in the same software, highlighting the ongoing threat to MFT platforms from cybercriminals.

Topics:technology #clop-ransomware #cybersecurity #exploit #fortra #goanywhere-mft #vulnerability

Share this article

Exploit released for Fortra GoAnywhere MFT auth bypass bug BleepingComputer
Patch Your GoAnywhere MFT Immediately - Critical Flaw Lets Anyone Be Admin The Hacker News
Watch out, a new critical flaw affects Fortra GoAnywhere MFT Security Affairs
Fortra warns of new critical GoAnywhere MFT auth bypass, patch now BleepingComputer

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

85%

531 → 78 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights