CSOonline

Attackers exploit zero-day RCE flaw in Cleo managed file transfer

The exploit takes advantage of a known file upload vulnerability that was not efficiently patched and can still be exploited in up-to-date versions of Cleo LexiCom, VLTrader and Harmony products.
PC Magazine

Clop Ransomware Gang Tied to Zero-Day Attacks on Cleo File-Transfer Services

The notorious CLOP ransomware gang is claiming responsibility for exploiting a zero-day vulnerability in Cleo’s file-transfer services to steal data from numerous companies. The gang told ...
Infosecurity-magazine.com

Zero Day in Cleo File Transfer Software Exploited En Masse

Security researchers have warned customers of the popular file transfer software vendor Cleo that a zero-day vulnerability is currently being exploited in the wild to steal their data. Security vendor ...