Barracuda Networks Inc. has patched a vulnerability in its Email Security Gateway appliances that was found to be being exploited by an alleged Chinese hacking group. Tracked as CVE-2023-7102, the ...

Researchers at Google LLC-owned cybersecurity firm Mandiant today warned that alleged Chinese attackers have and are continuing to target a zero-day vulnerability in Barracuda Networks Inc. devices ...

Network and email security firm Barracuda says it remotely patched all active Email Security Gateway (ESG) appliances on December 21 against a zero-day bug exploited by UNC4841 Chinese hackers. The ...

The Chinese state threat actor tracked as UNC4841 that last year attacked users of Barracuda Networks’ Email Security Gateway (ESG) appliances through a remote code execution (RCE) vulnerability has ...

CISA says new malware known as Submarine was used to backdoor Barracuda ESG (Email Security Gateway) appliances on federal agencies' networks by exploiting a now-patched zero-day bug. A suspected ...

CISA has published three malware analysis reports on malware variants associated with exploitation of CVE-2023-2868. CVE-2023-2868 is a remote command injection vulnerability affecting Barracuda Email ...

The attacks — which Barracuda and Mandiant attributed to the same China-linked group behind prior attacks against Email Security Gateway customers — have been exploiting a vulnerability in a ...

The US Cybersecurity and Infrastructure Security Agency (CISA) this week issued yet another alert related to the recent advanced persistent threat (APT) attacks targeting a command-injection ...

Researchers at Vectra AI, a supplier of threat detection and response services, have warned of the importance of taking a less rigid and more dynamic approach to managing zero-day exploitation ...

It appears the hackers working for the Chinese government were ‘not solely conducting conventional espionage campaigns,’ a Proofpoint researcher says. Hackers working on behalf of China’s government ...