cognitive cybersecurity intelligence

News and Analysis

Chinese Hackers Exploit New Zero-Day in Barracuda’s ESG

The Barracuda Email Security Gateway (ESG) appliance was found to have a vulnerability potentially exploitable by Chinese threat actor, UNC4841. The flaw, tied to a third-party library, ‘Spreadsheet::ParseExcel’, can lead to arbitrary code execution. This was used to deploy SEASPY and SALTWATER malware. Barracuda has patched the vulnerability and automatically applied the update to all ESG devices. The vulnerability has been classified as CVE-2023-7102, but its severity is yet to be categorized.

Source: gbhackers.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

More Posts

Report: Open Source Malware Instances Increased 73% in 2025 – Security Boulevard

Report: Open Source Malware Instances Increased 73% in 2025 – Security Boulevard

Report: Open Source Malware Instances Increased 73% in 2025 Security Boulevard

New indictment alleges ATM malware used nationwide to steal millions in cash – Yahoo

New indictment alleges ATM malware used nationwide to steal millions in cash – Yahoo

New indictment alleges ATM malware used nationwide to steal millions in cash Yahoo

What the Health? From KFF Health News: The Hazards of ICE for Public Health

What the Health? From KFF Health News: The Hazards of ICE for Public Health

The Host Julie Rovner KFF Health News @jrovner @julierovner.bsky.social Read Julie’s stories. Julie Rovner is chief Washington correspondent and host of KFF Health News’ weekly

AI-powered insurance platform breach impacts 3.1M individuals – TechTarget

AI-powered insurance platform breach impacts 3.1M individuals – TechTarget

AI-powered insurance platform breach impacts 3.1M individuals TechTarget