DVIUS Intelligence Summary: Hackers Exploiting Triofox Flaw to Install Remote Access Tools via Antivirus Feature - Analysis from Thehackernews.
Google's Mandiant Threat Defense on Monday said it discovered n-day exploitation
of a now-patched security flaw in Gladinet's Triofox file-sharing and remote
access platform.
The critical vulnerability, tracked as CVE-2025-12480 (CVSS score: 9.1), allows
an attacker to bypass authentication and access the configuration pages,
resulting in the upload and execution of arbitrary payloads.
The
DVIUS AI Assessment: This incident highlights the ongoing evolution of cyber threats. Organizations should prioritize patch management, employee awareness training, and multi-factor authentication to mitigate similar risks. For full details, refer to the original source.