cognitive cybersecurity intelligence

News and Analysis

Search

Hackers Exploiting Zimbra 0-day to Attack

Google’s Threat Analysis Group (TAG) detected a zero-day exploit targeting the Zimbra Collaboration, an open-source email server used by over 5,000 organisations globally. The bug, known as CVE-2023-37580, allows cross-site scripting and led to the theft of user credentials, email data, and authentication tokens by four distinct groups. Zimbra released a hotfix to address this vulnerability, but the exploit activity increased after the fix details were disclosed on GitHub.

Source: cybersecuritynews.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

More Posts