Actively exploited GoAnywhere MFT zero-day gets emergency patch


A zero-day vulnerability in the GoAnywhere MFT secure file transfer program is currently being extensively exploited, thus Fortra has published an emergency patch to fix it. The flaw enables remote code execution on susceptible GoAnywhere MFT instances whose administrative console is accessible online. Over the weekend, the business reported that the issue is being used in attacks (this advisory can only be seen with a free account) and offered signs of compromise for potentially impacted users, including a specific stack trace that would appear in the logs on compromised computers. Fortra stated, “If this stacktrace appears in the logs, it is highly likely that this system has been the subject of an attack.”

Read More…