Security researchers have warned customers of the popular file transfer software vendor Cleo that a zero-day vulnerability is currently being exploited in the wild to steal their data. Security vendor ...

File transfer software made by Cleo Communications is under active attack and a patch meant to stymie hackers doesn't fix the flaw, say security researchers from Huntress. Hackers are exploiting an ...

The notorious CLOP ransomware gang is claiming responsibility for exploiting a zero-day vulnerability in Cleo’s file-transfer services to steal data from numerous companies. The gang told ...

The exploit takes advantage of a known file upload vulnerability that was not efficiently patched and can still be exploited in up-to-date versions of Cleo LexiCom, VLTrader and Harmony products.

There is news coming from the U.S. cyber community for organizations that use Cleo’s software products: if your organization or your vendors use Cleo’s Cleo Harmony, VLTrader, or LexiCom products, you ...

Hackers Exploit New Zero-Day to Target File-Transfer Services The attacks are targeting products from Cleo, an IT supply chain software provider whose customers include Walmart, Target, and Home Depot ...

Ransomware group "Termite" — which recently claimed supply chain vendor Blue Yonder as a victim — may be behind widespread exploit activity targeting a previously fixed vulnerability in Cleo's LexiCom ...

Car hire giant Hertz has disclosed a worldwide data breach affecting the UK and other major markets, after becoming embroiled in a serious compromise of Cleo Communications’ suite of managed file ...

Update Dec. 12, 2024, 00:34 UTC: A Cleo spokesperson said the company has released a new patch to address active hacking of its file transfer software. "Cleo strongly recommends customers apply the ...