Belgium's state security service (VSSE) is under investigation for a possible data breach allegedly executed by Chinese hackers. The breach reportedly occurred between 2021 and 2023, allowing access to the intelligence service's external mail server. A vulnerability in Barracuda's Email Security Gateway was exploited by the hackers, which critical cybersecurity firms warned had been previously utilized in attacks on global organizations, particularly targeting government agencies. Although classified data remained intact, around 10% of the email data was compromised, primarily affecting personal information. Barracuda has urged clients to take immediate action regarding the vulnerability.
The Belgian federal prosecutor's office has opened an investigation into a suspected data breach involving Chinese hackers accessing the VSSE's external mail server.
Reports suggest that the China-backed hacking group exploited a vulnerability in Barracuda's Email Security Gateway, potentially exfiltrating 10% of the VSSE's email communications.
Mandiant previously reported that the vulnerability was a zero-day exploit, impacting global organizations, with a significant proportion being government agencies.
Though Barracuda released a patch for the vulnerability, they urged customers to replace affected appliances and check for compromises related to this flaw.
Collection
[
|
...
]