Filecatalyst Malicious =link= -

Beyond RCE, several other high-severity vulnerabilities were identified that could be leveraged for malicious purposes: CVE-2024-5276 Detail - NVD

Similarly, detailed a path traversal vulnerability that enabled attackers to read and write arbitrary files outside the intended webroot. Combined with the high-speed transfer engine, an attacker could leverage this flaw to stage ransomware executables onto the server and then use the legitimate FileCatalyst client to distribute those payloads to connected endpoints or steal backup data before encryption. Fortra has patched these issues, but scanning data from Shodan and Censys indicates thousands of unpatched instances remain online. filecatalyst malicious