Exploitation of Triofox CVE-2025-12480 Vulnerability by Hackers

Exploitation of Triofox CVE-2025-12480 Vulnerability by Hackers

First seen 23 Nov 2025, 03:35 UTC ThehackernewsThreatclusterBleepingcomputerWiz 50% similarity 40.0

Article Content

Browse articles
ThreatCluster

Hackers are exploiting a critical unauthenticated access vulnerability (CVE-2025-12480) in Gladinet's Triofox file-sharing platform. This flaw allows attackers to bypass authentication and gain administrative access, enabling the deployment of remote access tools and malicious payloads. The threat cluster responsible for the attacks is tracked as UNC6485, with exploitation activities identified since August 2025.

ThreatCluster AI

Community

Browse all →