Huntress warns of ongoing attacks exploiting a cryptography flaw in Gladinet CentreStack, allowing hackers to retrieve keys and execute remote code via deserialization. Organizations are urged to update to the latest software versions and review indicators of compromise. #Gladinet #CentreStack #RemoteCodeExecution
Keypoints
- Hackers are exploiting a vulnerability in CentreStack to access cryptographic keys.
- The flaw involves an insecure cryptography issue that allows retrieval of the βweb.configβ file.
- Attackers can use the keys for decryption, encryption, and forging requests to gain control.
- The vulnerability has impacted at least nine organizations across various sectors.
- Users should upgrade to version 16.12.10420.56791 and monitor IoCs for potential breaches.
Read More: https://www.securityweek.com/gladinet-centrestack-flaw-exploited-to-hack-organizations/