Globalscape+fraud _hot_ -

Globalscape is well-known for its legacy file transfer client, . Because this software has been popular for decades, scammers have co-opted the brand to defraud consumers.

| Control | Implementation in Globalscape EFT | |---------|------------------------------------| | | Audit EVENT_RULE_MODIFIED ; alert on new outbound email actions or script commands. | | Separation of duties | Require two admins to change folder-to-payment-system mappings; use AD groups. | | Immutable audit trail | Forward logs to SIEM (Splunk, QRadar) via syslog; disable local database deletion. | | File content inspection | Use ICAP server to scan outbound files for account number patterns; block unapproved substitutions. | | Session recording | Enable video capture of admin GUI sessions (Globalscape’s Admin Studio recorder). | | Periodic rule review | Weekly script to hash all event rules and compare to baseline. | globalscape+fraud

Below is a with content you can expand into a full research paper. Globalscape is well-known for its legacy file transfer

Because of this abuse, Globalscape/Fortra has issued public warnings stating that: | | Separation of duties | Require two