11-26-2023, 03:14 PM
(This post was last modified: 11-26-2023, 03:14 PM by 1van.
Edit Reason: Typo.
)
Moguće je da su ovi slučajevi iz Jula i Avgusta povezani sa:
Detalji: https://www.databreachtoday.com/google-s...ay-a-23607
Quote:A cross-site scripting zero-day flaw in the Zimbra Collaboration email server proved to be a bonanza for hackers as four distinct threat actors exploited the bug to steal email data and user credentials, said Google.
Researchers at Google's Threat Analysis Group in June discovered a zero-day vulnerability, tracked as CVE-2023-37580, being actively exploited in the wild.
Most of the exploit activity occurred after Zimbra had posted a hotfix onto its public GitHub site on July 5. The company published remediation guidance on July 13 but didn't release a patch until July 25. "Three of these campaigns began after the hotfix was initially made public highlighting the importance of organizations applying fixes as quickly as possible," Google said.
Detalji: https://www.databreachtoday.com/google-s...ay-a-23607
“If you think you are too small to make a difference, try sleeping with a mosquito.” - Dalai Lama XIV