Tag: Roundcube Webmail Software

Nation State Hackers Exploiting Zero-Day in Roundcube Webmail Software
News

Nation State Hackers Exploiting Zero-Day in Roundcube Webmail Software

On October 11, 2023, a zero-day vulnerability in the Roundcube webmail software was seen being used by the threat actor Winter Vivern to extract email communications from victims' accounts. "With the help of a zero-day vulnerability in Roundcube, Winter Vivern has increased its operations," according to a new analysis released today by ESET security researcher Matthieu Faou. Previously, proofs-of-concept for known vulnerabilities in Roundcube and Zimbra were accessible online." Winter Vivern, also referred to as TA473 and UAC-0114, is an antagonistic group with goals that coincide with those of Russia and Belarus. It has been linked to attacks on government targets read more Nation State Hackers Exploiting Zero-Day in Roundcube Webmail Software. Get up to date on the latest cyber...