Russia's Winter Vivern steals government emails through Zimbra flaw

The threat group is targeting entities in European governments that support Ukraine in the war

John Leonard
clock • 2 min read
Russia's Winter Vivern steals government emails through Zimbra flaw

A Russia-based threat group known as Winter Vivern or TA473 has been targeting a flaw in the Zimbra webmail client to exfiltrate emails from officials in European countries. That's according to a report from security vendor Proofpoint, which has been tracking this activity since February. It does not identify the countries concerned. The attackers exploit a vulnerability tracked as CVE-2022-27926 on unpatched internet-facing Zimbra Collaboration servers, which it discovers using a vulne...

To continue reading this article...

Join Channel Partner Insight

  • Exclusive news, insight and analysis for the IT channel across the US and Europe
  • Gain the latest insights through market analysis and interviews with channel leaders
  • Stay on top of key trends with an exclusive members-only podcast
  • Breaking news stories delivered straight to your inbox daily

Join now


Already a member?

Log in

More on Law & Order

Apple CEO slams EU tax-dodging claims

Tim Cook claims EU's ruling has 'no basis in fact or law'

clock 31 August 2016 • 2 min read

Privacy Shield given the go-ahead by EU governments

EU-US data protection law approved by member states

Josh Budd
clock 11 July 2016 • 2 min read

EU security adviser rejects Privacy Shield

Privacy Shield 'not robust enough', European data protection supervisor claims

Josh Budd
clock 01 June 2016 • 1 min read