Cerberus FTP Server
Secure File Transfer News
Enhanced log filtering in Cerberus FTP Server 11.2.3
Logs can be filtered by username and/or ip address.
SCP extension blocking bypass vulnerability fixed in Cerberus FTP Server versions 11.2.5 and 10.0.26
Cerberus FTP Server Enterprise and Professional versions prior to 11.2.5 and 10.0.26 are vulnerable to an extension blocking bypass over the SCP protocol. This issue is fixed in version 11.2.5 and 10.0.26.
Web Client Exposes Hidden File and Folder Names to Under-privileged Users
Security Advisory Description Cerberus FTP Server Enterprise Edition prior to versions 11.1.0 and 10.0.23 allow underprivileged WebClient users to view file names and folder names. Only the names of the files are exposed; the file contents are not exposed. A malicious...
New “Send a File” feature in Cerberus FTP Server 11.2
We’ve introduced a highly requested new Transfer File Target in Event Manager that allows transferring files to other servers via SFTP, FTP, FTPS, or HTTP/S PUT in Cerberus FTP Server 11.2 Enterprise.
Closing Admin Console no Longer Minimizes to Tray Icon
We are changing the way Cerberus FTP version 11.2.2 behaves when closing the Admin Console. The change is small, but may surprise long-time users. How it Used to Work Before 11.2.2, clicking the 'close' button or Alt-F4 to close Cerberus only hides the window from the...
White Paper – Load Testing Cerberus FTP Server 11 on the AWS and Azure Platforms
Cerberus FTP Server is a robust, easy-to-manage secure file transfer server solution. Properly configured, and with sufficient network bandwidth, a single instance of Cerberus can handle large numbers of connections transferring large files. This white paper documents...
Changes to Cerberus Outgoing SSL/TLS Connections in Version 11.2
Introduction Cerberus is receiving a security update with version 11.2 that administrators should review before upgrading. There is a small chance that the changes made may impact services, but we have provided an override setting to workaround any impact....
New User Creation in Cerberus FTP Server 11.1
We listened to your feedback about making the User Manager more intuitive, especially as it relates to creating new users and groups. With Cerberus FTP Server 11.1, we’ve introduced a new user and group guided creation wizard to more easily create new Cerberus users and groups.
Continuous Log View in Cerberus FTP Server 11.1
We’ve introduced a new, continuous view in Cerberus FTP Server 11.1 for the Log Manager. This new view is now the default over the paged table view that we debuted with version 11.0. While These changes aren’t particularly large, we do think they will have a big impact on the usability of the Log Manager in 11.1. We’re eager for you to give them a try and tell us what you think.
Cerberus FTP’s Update on COVID-19
These are extraordinary times. We’re all concerned about COVID-19, and we’re all adjusting to a new normal. At Cerberus, that means we’ve taken our office entirely remote to ensure the safety and well-being of our staff. We’re checking in with each other regularly to...
Denial of Service Vulnerability
Security Advisory Description Cerberus FTP Server contains a flaw that may allow malformed HTTP requests to crash the service. Malicious actors could leverage this flaw to repeatedly crash the server, thereby denying access to legitimate users. Fix Cerberus FTP...
Cerberus FTP Server 11.0 has a completely new UI
The newer, web-based UI we’ve implemented is far more flexible, scalable, portable, and easy to improve upon. While it’s far from perfect in our first release, we can and will make changes and improvements quickly.
Cerberus FTP Server Version 11 is here!
You've been waiting and now it's here: Cerberus FTP Server Version 11 is now available for new customers and active service agreement holders, with new features to keep your data and file transfers safe and secure. Cerberus FTP Server Version 11 offers the following...
How To Remain HIPAA Compliant With Cerberus FTP Server
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) addresses the minimum standards that health care organizations must implement to protect the security, privacy, and confidentiality of patient data that is transferred over the Internet. Section...
XSS Vulnerability in Public Shares fixed in Cerberus FTP Server version 11.0.1 and 10.0.17
Security Advisory Description Cerberus FTP Server Enterprise Edition prior to versions 11.0.1 and 10.0.17 are vulnerable to a cross-site scripting (XSS) attack on Cerberus' public share page. This XSS vulnerability allows a malicious public share to insert arbitrary...
Zip/Unzip permission bypass vulnerability fixed in Cerberus FTP Server versions 11.0.3 and 10.0.18
Security Advisory Description Cerberus FTP Server Enterprise Edition prior to versions 11.0.3 and 10.0.18 are vulnerable to a permissions bypass when a user has zip/unzip permission. When zipping, users could zip files and folders that weren't visible to them; and...
2FA brute force vulnerabilities fixed in Cerberus FTP Server 11.0.1
Cerberus FTP Server prior to 11.0.1 were vulnerable to brute force attacks for the 2FA code for a web client or server admin users when using HOTP 2FA.
What is FIPS 140-2 and is It Right for Me? How to Make FTP More Secure
One of our most-visited help articles is “How can I make Cerberus FTP Server secure?” In that article, we mention FIPS 140-2, but we still get quite a few emails from customers asking whether they should be using FIPS 140-2 mode in Cerberus. So let's dig into...
S/FTP Server Logging: Three Common Use Cases
FTP server logging guidelines for common use cases, including PCI, HIPAA and GDPR compliance.
Security Vulnerabilities Resolved in Cerberus FTP Server 10.0.15
Detailed information about the recent security fixes in Cerberus FTP Server 10.0.15 and 10.0.16.
Explore what Cerberus FTP Server can do for you
- 25 Day Free Trial
- No Credit Card Required
- Up and running in less than 15 mins