Attackers hacked Barracuda ESG appliances via zero-day since October 2022

Barracuda says that the recently discovered compromise of some of it clients’ ESG appliances via a zero-day vulnerability (CVE-2023-2868) resulted in the deployment of three types of malware and data exfiltration. The company did not say how many organizations have been breached, but has comfirmed that the “earliest identified evidence of exploitation of CVE-2023-2868 is currently October 2022.” Zeor-day exploited, Barracuda ESG appliances backdoored On May 23, Barracuda Networks publicly acknowledged that attackers have been … More →

The post …

attackers backdoor barracuda barracuda networks breached clients compromise cve cve-2023-2868 data data exfiltration data theft deployment don't miss esg exfiltration exploit hacked hot stuff malware mandiant october organizations the company types vulnerability zero-day zero-day vulnerability