all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Chinese Hackers Exploited New Zero-Day in Barracuda's ESG Appliances

Add to bookmarks
Dec. 27, 2023, 12:35 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Barracuda has revealed that Chinese threat actors exploited a new zero-day in its Email Security Gateway (ESG) appliances to deploy backdoor on a "limited number" of devices.
Tracked as CVE-2023-7102, the issue relates to a case of arbitrary code execution that resides within a third-party and open-source library Spreadsheet::ParseExcel that's used by the Amavis scanner within the

arbitrary code backdoor barracuda case chinese chinese hackers code code execution cve deploy devices email email security email security gateway esg exploited gateway hackers issue library party security security gateway spreadsheet third third-party threat threat actors zero-day

Visit resource

More from thehackernews.com / The Hacker News

Everyone's an Expert: How to Empower Your Employees for Cybersecurity Success an hour ago | thehackernews.com
course cybersecurity decision employees +8
ZLoader Malware Evolves with Anti-Analysis Trick from Zeus Banking Trojan an hour ago | thehackernews.com
analysis anti-analysis authors banking +14
Ex-NSA Employee Sentenced to 22 Years for Trying to Sell U.S. Secrets to Russia 5 hours ago | thehackernews.com
agency classified defense documents +17
Millions of Malicious 'Imageless' Containers Planted on Docker Hub Over 5 Years 22 hours ago | thehackernews.com
attacks campaigns containers cybersecurity +10
U.S. Government Releases New AI Security Guidelines for Critical Infrastructure 1 day, 1 hour ago | thehackernews.com
address ai risks ai security artificial +16
Considerations for Operational Technology Cybersecurity 1 day, 1 hour ago | thehackernews.com
change control cybersecurity devices +18
New U.K. Law Bans Default Passwords on Smart Devices Starting April 2024 1 day, 6 hours ago | thehackernews.com
act and telecommunications april bans +23
Google Prevented 2.28 Million Malicious Apps from Reaching Play Store in 2023 1 day, 19 hours ago | thehackernews.com
access accounts address android +20
China-Linked 'Muddling Meerkat' Hijacks DNS to Map Internet on Global Scale 1 day, 22 hours ago | thehackernews.com
actor china cloud cloud security +22

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Senior Security Researcher

@ Microsoft | Redmond, Washington, United States
View on infosec-jobs.com

Sr. Cyber Risk Analyst

@ American Heart Association | Dallas, TX, United States
View on infosec-jobs.com

Cybersecurity Engineer 2/3

@ Scaled Composites, LLC | Mojave, CA, US
View on infosec-jobs.com

Information Security Operations Manager

@ DP World | Charlotte, NC, United States
View on infosec-jobs.com

Sr Cyber Security Engineer I

@ Staples | Framingham, MA, United States
View on infosec-jobs.com

Security Engineer - Heartland (Remote)

@ GuidePoint Security LLC | Remote in the US
View on infosec-jobs.com
View more jobs