A new vulnerability in Fortra’s GoAnywhere software has been exploited.

A critical vulnerability in Fortra’s GoAnywhere MFT software was exploited as a zero-day before patches were released. Hackers used the flaw to gain remote code execution and create backdoor admin accounts, compromising over 20,000 internet-exposed instances. The vulnerability involves a deserialization flaw in the license servlet, allowing command injection. Security firms watchTowr and Rapid7 suspect attackers may have obtained a private key or tricked a license server to exploit the flaw.

Read more:

https://www.securityweek.com/recent-fortra-goanywhere-mft-vulnerability-exploited-as-zero-day/