all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Thousands of Zimbra mail servers backdoored in large scale attack

Add to bookmarks
Aug. 11, 2022, 1 p.m. |

Malwarebytes Labs blog.malwarebytes.com

Categories: Exploits and vulnerabilities

Categories: News

Tags: Zimbra


Tags: ZVS


Tags: cve-2022-27925


Tags: web shell


Tags: cve-2022-37042


Tags: authentication


Tags: RCE


Researchers found that a known RCE vulnerability in Zimbra Collaboration was chained with a new authentication vulnerability to drop backdoor web shells on thousands of servers



(Read more...)



The post Thousands of Zimbra mail servers backdoored in large scale attack appeared first on Malwarebytes Labs.

attack authentication cve-2022-27925 cve-2022-37042 exploits and vulnerabilities large mail rce scale servers web shell zimbra zvs

Visit resource

More from blog.malwarebytes.com / Malwarebytes Labs

TikTok comes one step closer to a US ban 15 hours ago | blog.malwarebytes.com
ban ban tiktok bill bytedance +6
Google ad for Facebook redirects to scam 1 day, 6 hours ago | blog.malwarebytes.com
blog campaign facebook google +8
“Substantial proportion” of Americans may have had health and personal data stolen in Change Healthcare … 1 day, 13 hours ago | blog.malwarebytes.com
alphv announcement attack breach +16
Picking fights and gaining rights, with Justin Brookman: Lock and Code S05E09 2 days, 12 hours ago | blog.malwarebytes.com
code consumer consumer reports justin +12
Billions of scraped Discord messages up for sale 2 days, 17 hours ago | blog.malwarebytes.com
access database discord internet +8
A week in security (April 15 – April 21) 2 days, 19 hours ago | blog.malwarebytes.com
april a week in security cerebral giant tiger +7
Law enforcement reels in phishing-as-a-service whopper 6 days, 10 hours ago | blog.malwarebytes.com
as-a-service cybercrime enforcement international +9
Mental health company Cerebral failed to protect sensitive personal data, must pay $7 million 6 days, 13 hours ago | blog.malwarebytes.com
cerebral charged data federal +19
Cannabis investment scam JuicyFields ends in 9 arrests 6 days, 16 hours ago | blog.malwarebytes.com
arrests cannabis europol investment +5

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Audit and Compliance Technical Analyst

@ Accenture Federal Services | Washington, DC
View on infosec-jobs.com

ICS Cyber Threat Intelligence Analyst

@ STEMBoard | Arlington, Virginia, United States
View on infosec-jobs.com

Cyber Operations Analyst

@ Peraton | Arlington, VA, United States
View on infosec-jobs.com

Cybersecurity – Information System Security Officer (ISSO)

@ Boeing | USA - Annapolis Junction, MD
View on infosec-jobs.com

Network Security Engineer I - Weekday Afternoons

@ Deepwatch | Remote
View on infosec-jobs.com
View more jobs