- Wednesday
- February 19th, 2025
The threat actor known as Winter Vivern targeted Roundcube webmail software on Oct. 11, exploiting a zero-day vulnerability to gain unauthorized access to email messages. What is Winter Vivern Hacking Group (Photo: Kris from Pixabay)Winter Vivern exploits a zero-day flaw...
Mar 14, 2019Mohit Kumar If you are a Counter-Strike gamer, then beware, because 39% of all existing Counter-Strike 1.6 game servers available online are malicious that have been set-up to remotely hack gamers' computers.A team of cybersecurity researchers at Dr....
The Winter Vivern Russian hacking group has been exploiting a Roundcube Webmail zero-day in attacks targeting European government entities and think tanks since at least October 11. The Roundcube development team released security updates fixing the Stored Cross-Site Scripting (XSS)...
IT teams should prioritize the patching of two zero-day vulnerabilities, one in Microsoft Outlook's authentication mechanism and another that's a Mark of the Web bypass, security experts said today. The two are part of a cache of 74 security bugs that Microsoft...
At least four separate cyberattack groups have used a former zero-day security vulnerability in the Zimbra Collaboration Suite (ZCS) to steal email data, user credentials, and authentication tokens from government organizations globally.ZCS is an email server, calendaring, and chat and...
Cybersecurity researchers from Google’s Threat Analysis Group (TAG) recently discovered a zero-day vulnerability in a popular email server platform that hackers were using to steal sensitive data from government organizations around the world.In a blog post published by researchers Clement...
Government agencies in Moldova, Pakistan, Tunisia, and Vietnam have been targeted by threat actors in campaigns exploiting a zero-day vulnerability in the Zimbra Collaboration email server that was discovered in June, reports The Record, a news site by cybersecurity firm...
Governance & Risk Management , Patch Management Zimbra Patched the Cross-Site Scripting Vulnerability on July 25 Prajeet Nair (@prajeetspeaks) • November 16, 2023 Google says four different threat actors exploited a flaw in the Zimbra Collaboration email server....
Network administrators with Exim Main Transfer Agent email servers in their environments are being urged to update their servers today or apply mitigations to close six zero-day vulnerabilities. The security release, exim-4.96.1, is being published today. “This is a security...
Adam Bannister 01 June 2022 at 14:34 UTC Updated: 06 June 2022 at 12:56 UTC CSRF exploit requires person to open malicious e-mailA zero-day vulnerability in Horde Webmail allows attackers to take over the internet server and pivot to compromising...
Loading posts... 
All posts loaded
No more posts