Google's Threat Analysis Group (TAG) revealed on Thursday that a Zimbra Collaboration Suite zero-day was exploited earlier this year to steal email data from government organizations in several countries.
The internet giant has now revealed that it saw the first campaign exploiting CVE-2023-37580 on June 29. This campaign was aimed at a government organization in Greece and the attacker leveraged a previously documented framework to steal emails and attachments.
Shortly after Zimbra announced an official patch on July 25, Google's TAG warned that in-the-wild exploitation had been observed, but did not share any information about the attacks.
#zero-day vulnerability #Zimbra Collaboration Suite #email data theft #government organizations #cross-site scripting (XSS) #Russian APT
[
Collection
]
[
|
...
]