Barracuda Urges Replacing — Not Patching — Its Email Security Gateways

It's not often that a zero-day vulnerability causes a network security vendor to urge customers to physically remove and decommission an entire line of affected hardware -- as opposed to just applying software updates. But experts say that is exactly what transpired this week with Barracuda Networks, as the company struggled to combat a sprawling malware threat which appears to have undermined its email security appliances in such a fundamental way that they can no longer be safely updated with …

barracuda barracuda networks caitlin condon customers cve-2023-2868 email email security email security gateway experts hardware international computer science institute latest warnings mandiant network networks network security nicholas weaver patching rapid7 remove security security vendor software software updates time to patch updates vendor vulnerability zero-day zero-day vulnerability