securityaffairsDec 19
#CLOP Targets #Gladinet #CentreStack servers in large-scale extortion campaign
https://securityaffairs.com/185875/cyber-crime/clop-targets-gladinet-centrestack-servers-in-large-scale-extortion-campaign.html
#securityaffairs #hacking
CLOP targets Gladinet CentreStack servers in large-scale extortion campaign

The Clop ransomware group is targeting Gladinet CentreStack file servers in a new large-scale extortion campaign.

Security Affairs
RedPacket SecurityDec 15

CVE Alert: CVE-2025-14611 - Gladinet - CentreStack and TrioFox - https://www.redpacketsecurity.com/cve-alert-cve-2025-14611-gladinet-centrestack-and-triofox/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-14611 #gladinet #centrestack-and-triofox

CVE Alert: CVE-2025-14611 - Gladinet - CentreStack and TrioFox - RedPacket Security

Gladinet CentreStack and Triofox prior to version 16.12.10420.56791 used hardcoded values for their implementation of the AES cryptoscheme. This degrades

RedPacket Security
securityaffairsNov 5
U.S. #CISA adds #Gladinet #CentreStack, and CWP Control Web Panel flaws to its Known Exploited Vulnerabilities catalog
https://securityaffairs.com/184226/security/u-s-cisa-adds-gladinet-centrestack-and-cwp-control-web-panel-flaws-to-its-known-exploited-vulnerabilities-catalog.html
#securityaffairs #hacking
U.S. CISA adds Gladinet CentreStack, and CWP Control Web Panel flaws to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Gladinet CentreStack, and CWP Control Web Panel flaws to its Known Exploited Vulnerabilities catalog.

Security Affairs
RedPacket SecurityNov 4

CVE Alert: CVE-2025-11371 - Gladinet - CentreStack and TrioFox - https://www.redpacketsecurity.com/cve-alert-cve-2025-11371-gladinet-centrestack-and-triofox/

#OSINT #ThreatIntel #CyberSecurity #cve-2025-11371 #gladinet #centrestack-and-triofox

CVE Alert: CVE-2025-11371 - Gladinet - CentreStack and TrioFox - RedPacket Security

In the default installation and configuration of Gladinet CentreStack and TrioFox, there is an unauthenticated Local File Inclusion Flaw that allows

RedPacket Security
The DefendOps DiariesOct 16

A hidden flaw in a trusted file-sharing tool let hackers grab sensitive, critical files before a patch was ready. How can a single zero-day shake up your entire cybersecurity strategy? Read the full breakdown.

https://thedefendopsdiaries.com/gladinet-centrestack-zero-day-anatomy-of-an-actively-exploited-lfi-vulnerability/

#zero-day
#lfi
#centrestack
#vulnerabilitymanagement
#cybersecurity
#patchmanagement
#supplychainsecurity
#threatintelligence
#incidentresponse

The DefendOps DiariesApr 9, 2025

A critical CentreStack flaw is letting hackers use a “universal key” to bypass your security – imagine a vault with its lock removed. If you rely on this file-sharing platform, now might be the time to check your patch status.

https://thedefendopsdiaries.com/understanding-the-centrestack-security-flaw-a-critical-threat-to-file-sharing-systems/

#centrestack
#cybersecurity
#infosec
#vulnerability
#filesharing

Understanding the CentreStack Security Flaw: A Critical Threat to File Sharing Systems

Explore the critical CentreStack security flaw threatening file sharing systems with unauthorized access risks.

The DefendOps Diaries
Zeljka ZorzApr 9, 2025

RCE flaw in MSP-friendly file sharing platform exploited by attackers since March 2025.

https://www.helpnetsecurity.com/2025/04/09/rce-gladinet-centrestack-file-sharing-exploited-cve-2025-30406/

#MSP #ZeroDay #CentreStack #cybersecurity

RCE flaw in MSP-friendly file sharing platform exploited by attackers (CVE-2025-30406) - Help Net Security

A RCE vulnerability (CVE-2025-30406) in Gladinet CentreStack file-sharing/remote file access platform has been added to CISA's KEV catalog.

Help Net Security