Microsoft is plugging more holes that let you use Windows 11 without an online account

Microsoft is cracking down on bypass methods that let Windows 11 installs use a local account, and avoid an internet requirement during the setup process. In a new Windows 11 test build released today ...
The Hacker News

Microsoft Links Storm-1175 to GoAnywhere Exploit Deploying Medusa Ransomware

Microsoft links Storm-1175 to GoAnywhere flaw CVE-2025-10035, exploited since September for Medusa ransomware.
GovInfoSecurity

Hackers Exploit RMM Tools to Deploy Malware

Cybercriminals are hijacking trusted remote monitoring and management tools to bypass defenses, gain persistent access and quietly stage ransomware attacks. Experts ...

Microsoft: Critical GoAnywhere bug exploited in ransomware attacks

A cybercrime group, tracked as Storm-1175, has been actively exploiting a maximum severity GoAnywhere MFT vulnerability in Medusa ransomware attacks for nearly a month.

Microsoft warns critical GoAnywhere security bug is being exploited by ransomware gang, so be on your guard

Microsoft is warning that a ransomware group is exploiting a maximum-severity vulnerability recently found in GoAnywhere Managed File Transfer (MFT). Fortra recently said it discovered and patched a ...
SecurityWeek

Fortra GoAnywhere MFT Zero-Day Exploited in Ransomware Attacks

A recently patched vulnerability in Fortra GoAnywhere MFT (Managed File Transfer) was exploited as a zero-day by a Chinese ransomware group, Microsoft reports. The flaw, tracked as CVE-2025-10035 ...
Infosecurity Magazine

Microsoft: Critical GoAnywhere Bug Exploited in Medusa Ransomware Campaign

First identified in 2021, Medusa has snared over 300 global victims in critical infrastructure sectors, according to a joint advisory from March published by the Cybersecurity and Infrastructure ...