The exploit takes advantage of a known file upload vulnerability that was not efficiently patched and can still be exploited in up-to-date versions of Cleo LexiCom, VLTrader and Harmony products.

Security researchers have warned customers of the popular file transfer software vendor Cleo that a zero-day vulnerability is currently being exploited in the wild to steal their data. Security vendor ...

An active ransomware campaign against the Cleo managed file transfer tool is about to ramp up now that a proof-of-concept exploit for a zero-day flaw in the software has become publicly available.

We collaborate with the world's leading lawyers to deliver news tailored for you. Sign Up for any (or all) of our 25+ Newsletters. Some states have laws and ethical rules regarding solicitation and ...

Rental car giant Hertz Corp. confirmed that some of its customers' data was stolen during a wave of attacks against two zero-day vulnerabilities last year. Hertz said the data was stolen when a threat ...

The cybercriminal group Clop — previously responsible for the widely felt MOVEit data theft attacks of 2023 — has reportedly claimed responsibility for the recent attacks exploiting Cleo file transfer ...

Car hire giant Hertz has disclosed a worldwide data breach affecting the UK and other major markets, after becoming embroiled in a serious compromise of Cleo Communications’ suite of managed file ...

Cleo announced that it has been acquired by Globe Equity Partners, an investment firm focused on mid-market software companies serving growth industry segments. Mahesh Rajasekharan will assume the ...