Russia's Winter Vivern steals government emails through Zimbra flaw

The threat group is targeting entities in European governments that support Ukraine in the war

John Leonard
clock • 2 min read
Russia's Winter Vivern steals government emails through Zimbra flaw

A Russia-based threat group known as Winter Vivern or TA473 has been targeting a flaw in the Zimbra webmail client to exfiltrate emails from officials in European countries. That's according to a report from security vendor Proofpoint, which has been tracking this activity since February. It does not identify the countries concerned. The attackers exploit a vulnerability tracked as CVE-2022-27926 on unpatched internet-facing Zimbra Collaboration servers, which it discovers using a vulne...

To continue reading this article...

Join Channel Partner Insight

  • Exclusive news, insight and analysis for the IT channel across the US and Europe
  • Gain the latest insights through market analysis and interviews with channel leaders
  • Stay on top of key trends with an exclusive members-only podcast
  • Breaking news stories delivered straight to your inbox daily

Join now

 

Already a member?

Log in

John Leonard
Author spotlight

John Leonard

View profile
More from John Leonard

Where are Europe's cloud providers in the hybrid cloud boom?

Google cuts six per cent of global workforce

More on Law & Order

Law & Order

Apple CEO slams EU tax-dodging claims

Tim Cook claims EU's ruling has 'no basis in fact or law'

Samantha Wright
clock 31 August 2016 • 2 min read
Law & Order

Privacy Shield given the go-ahead by EU governments

EU-US data protection law approved by member states

Josh Budd
Josh Budd
clock 11 July 2016 • 2 min read
Law & Order

EU security adviser rejects Privacy Shield

Privacy Shield 'not robust enough', European data protection supervisor claims

Josh Budd
Josh Budd
clock 01 June 2016 • 1 min read