Webinar: Enabling a 360° View of Your Likely Threats & Security Posture - Watch On-demand Webinar Now!

Threat Advisories

Unknown Attackers exploit several vulnerabilities in Zimbra Collaboration Suite

August 18, 2022

Threat Level

Red

Attack Report

For a detailed advisory, download the pdf file here

Summary

The Zimbra Collaboration Suite (ZCS) email servers experienced multiple breaches between July and early August 2022. The exploitation of CVE-2022-27925, a remote-code-execution (RCE) vulnerability in ZCS, was most likely the cause of these incidents.

APT-C-35 infection chain adds novel Windows framework modules

Chrome’s zero-day flaw allows arbitrary code execution