Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

ViewState deserialization

China-linked Ink Dragon group targets European government networks, Check Point says

Cybercrime, News, Research, Risk

December 17, 2025

Check Point Research says a China-linked hacking cluster known as Ink Dragon has focused on European government targets since July 2025, using web shells, ShadowPad relays and modular tooling including FINALDRAFT to maintain stealthy, long-term access across multiple regions.
Hard-coded cryptographic keys in Gladinet CentreStack and Triofox exploited to access web.config, Huntress says

Cloud, Risk, Vendors, Vulnerabilities

December 11, 2025

Huntress warned that hard-coded cryptographic keys in Gladinet CentreStack and Triofox allow attackers to decrypt or forge access tickets and retrieve web.config files, enabling ViewState deserialization attempts; nine organisations have been affected and vendors have released updates.

About
Editorial Policy
Privacy
Contact