all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

[updated] Thousands of Zimbra mail servers backdoored in large scale attack

Add to bookmarks
Aug. 11, 2022, 1 p.m. |

Malwarebytes Labs blog.malwarebytes.com

Categories: Exploits and vulnerabilities

Categories: News

Tags: Zimbra


Tags: ZVS


Tags: cve-2022-27925


Tags: web shell


Tags: cve-2022-37042


Tags: authentication


Tags: RCE


Researchers found that a known RCE vulnerability in Zimbra Collaboration was chained with a new authentication vulnerability to drop backdoor web shells on thousands of servers



(Read more...)



The post [updated] Thousands of Zimbra mail servers backdoored in large scale attack appeared first on Malwarebytes Labs.

attack authentication cve-2022-27925 cve-2022-37042 exploits and vulnerabilities large mail rce scale servers web shell zimbra zvs

Visit resource

More from blog.malwarebytes.com / Malwarebytes Labs

TikTok comes one step closer to a US ban 5 hours ago | blog.malwarebytes.com
ban ban tiktok bill bytedance +6
Google ad for Facebook redirects to scam 20 hours ago | blog.malwarebytes.com
blog campaign facebook google +8
“Substantial proportion” of Americans may have had health and personal data stolen in Change Healthcare … 1 day, 3 hours ago | blog.malwarebytes.com
alphv announcement attack breach +16
Picking fights and gaining rights, with Justin Brookman: Lock and Code S05E09 2 days, 1 hour ago | blog.malwarebytes.com
code consumer consumer reports justin +12
Billions of scraped Discord messages up for sale 2 days, 6 hours ago | blog.malwarebytes.com
access database discord internet +8
A week in security (April 15 – April 21) 2 days, 8 hours ago | blog.malwarebytes.com
april a week in security cerebral giant tiger +7
Law enforcement reels in phishing-as-a-service whopper 5 days, 23 hours ago | blog.malwarebytes.com
as-a-service cybercrime enforcement international +9
Mental health company Cerebral failed to protect sensitive personal data, must pay $7 million 6 days, 2 hours ago | blog.malwarebytes.com
cerebral charged data federal +19
Cannabis investment scam JuicyFields ends in 9 arrests 6 days, 5 hours ago | blog.malwarebytes.com
arrests cannabis europol investment +5

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Specialist

@ Lely | Maassluis, Netherlands
View on infosec-jobs.com

IT Security Manager (Corporate Security) (REF822R)

@ Deutsche Telekom IT Solutions | Budapest, Hungary
View on infosec-jobs.com

Senior Security Architect

@ Cassa Centrale Banca - Credito Cooperativo Italiano | Trento, IT, 38122
View on infosec-jobs.com

Senior DevSecOps Engineer

@ Raft | Las Vegas, NV (Remote)
View on infosec-jobs.com

Product Manager - Compliance

@ Arctic Wolf | Remote - Colorado
View on infosec-jobs.com
View more jobs