A Russia-based threat group known as Winter Vivern or TA473 has been targeting a flaw in the Zimbra webmail client to exfiltrate emails from officials in European countries. That's according to a report from security vendor Proofpoint, which has been tracking this activity since February. It does not identify the countries concerned. The attackers exploit a vulnerability tracked as CVE-2022-27926 on unpatched internet-facing Zimbra Collaboration servers, which it discovers using a vulne...
To continue reading this article...
Join Channel Partner Insight
- Exclusive news, insight and analysis for the IT channel across the US and Europe
- Gain the latest insights through market analysis and interviews with channel leaders
- Stay on top of key trends with an exclusive members-only podcast
- Breaking news stories delivered straight to your inbox daily
Already a member?