The article reports that a Russian government-supported group, Sednit, exploited XSS vulnerabilities in multiple high-value mail servers globally, targeting particularly firms associated with defense contracting in Bulgaria and Romania. XSS, an acronym for cross-site scripting, has been a major threat since its emergence in 2005 but has seen a resurgence with these recent attacks. The group targeted a range of software, including Roundcube and Zimbra, using spearphishing tactics to deliver their exploits, highlighting a significant threat to critical communication infrastructures.
Threat actors, likely supported by the Russian government, hacked multiple high-value mail servers around the world by exploiting XSS vulnerabilities.
Sednit, a Kremlin-backed hacking group, gained access to email accounts by exploiting XSS vulnerabilities in mail server software from four different makers.
Collection
[
|
...
]