cognitive cybersecurity intelligence

News and Analysis

Chinese Hackers Exploit New Zero-Day in Barracuda’s ESG

The Barracuda Email Security Gateway (ESG) appliance was found to have a vulnerability potentially exploitable by Chinese threat actor, UNC4841. The flaw, tied to a third-party library, ‘Spreadsheet::ParseExcel’, can lead to arbitrary code execution. This was used to deploy SEASPY and SALTWATER malware. Barracuda has patched the vulnerability and automatically applied the update to all ESG devices. The vulnerability has been classified as CVE-2023-7102, but its severity is yet to be categorized.

Source: gbhackers.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

More Posts

UK’s Legal Aid Agency Experiences Cyberattack

UK’s Legal Aid Agency Experiences Cyberattack

A UK Ministry of Justice executive agency was targeted in a cyberattack, compromising its systems. The incident highlights vulnerabilities in cybersecurity, prompting a review of

HIMSSCast: Help with the labor shortage and more can come from tech dealmaking

HIMSSCast: Help with the labor shortage and more can come from tech dealmaking

Berkeley Research Group (BRG) launched its “2025 U.S. Healthcare & Life Sciences Transactions Outlook,” revealing that providers are considering deal activities to tackle AI, cybersecurity,

How telemedicine bridges the rural maternity care gap

How telemedicine bridges the rural maternity care gap

The content centers on “Enterprise Taxonomy” related to telehealth, focusing on patient access for rural and underserved communities, as well as population and public health.

LockBit ransomware group falls victim to hackers itself

LockBit ransomware group falls victim to hackers itself

A data leak has disclosed information about negotiations with victims, Bitcoin wallet addresses, affiliate accounts, and details of attacks.