Exploit code is now available for a critical authentication bypass vulnerability in Fortra's GoAnywhere MFT (Managed File Transfer) software that allows attackers to create new admin users on ...

Fortra has released security updates to patch a maximum severity vulnerability in GoAnywhere MFT's License Servlet that can be exploited in command injection attacks. GoAnywhere MFT is a web-based ...

Threat actors could soon strike after a proof-of-concept exploit was published for a critical vulnerability in managed file transfer (MFT) software Fortra GoAnywhere MFT yesterday. Horizon3 published ...

The ransomware gang known as Clop has been observed exploiting a pre-authentication command injection vulnerability (CVE-2023-0669) in Fortra's file transfer solution GoAnywhere MFT. The high-level ...

CVE-2025-10035 is a critical deserialization flaw in GoAnywhere MFT Fortra urges users to patch immediately; no confirmed in-the-wild exploitation yet Vulnerability may allow command injection if ...

Researchers warn organizations to immediately upgrade deployments of GoAnywhere MFT due to vulnerabilities that have been exploited in the past by ransomware gangs. Users of Fortra’s GoAnywhere MFT ...

As of this writing, it’s unclear why the security vendor fixed a major flaw in the file transfer platform in early December but did not issue an advisory for more than a month. GoAnywhere maker Fortra ...

When Microsoft confirmed that the threat actor Storm-1175 has been actively exploiting CVE-2025-10035 in GoAnywhere MFT systems, the disclosure revealed far more than another ransomware incident. It ...

Security experts are raising an alarm about the possibility of supply-chain attacks, particularly by hackers on GoAnywhere MFT, a popular enterprise file transfer solution. The critical severity bug ...

Doing four things means the difference between weathering or faltering after a supply chain breach. Minimizing the damage and risk of a zero-day attack requires speed and a software vendor that ...