[CVE-2023-2868] Barracuda ESG 0-Day exploited by China??
by dumpstr8 - Tuesday June 20, 2023 at 10:02 PM
#1
http://www.ctfiot.com/120876.html

TL;DR (joking, read it, interesting stuff inside)

Barracuda ESG was affected by a zero-day vulnerability, CVE-2023-2868. This vulnerability was exploited suposedly by UNC4841, that has links to China and has been conducting espionage campaigns since October 2022 against various sectors and regions.

UNC4841 sent emails with malicious attachments to take advantage of the vulnerability and compromise Barracuda ESG. The Barracuda team detected the issue and released patches to resolve it, but the attackers continued to cause problems.

The victims of these attackers include government agencies, public and private sectors worldwide. Mandiant, warns that these attackers are likely to persist
Reply
#2
(06-20-2023, 10:02 PM)dumpstr8 Wrote: http://www.ctfiot.com/120876.html

TL;DR (joking, read it, interesting stuff inside)

Barracuda ESG was affected by a zero-day vulnerability, CVE-2023-2868. This vulnerability was exploited suposedly by UNC4841, that has links to China and has been conducting espionage campaigns since October 2022 against various sectors and regions.

UNC4841 sent emails with malicious attachments to take advantage of the vulnerability and compromise Barracuda ESG. The Barracuda team detected the issue and released patches to resolve it, but the attackers continued to cause problems.

The victims of these attackers include government agencies, public and private sectors worldwide. Mandiant, warns that these attackers are likely to persist

Fuck Mandiant.
Ban reason: Extreme degenerate behavior | Unwelcome here (Permanent)
Reply
#3
This is mandiant blog link about barracuda
hxxps://www.mandiant.com/resources/blog/barracuda-esg-exploited-globally
Reply
#4
official documentation https://www.barracuda.com/support/glossa...day-threat
Reply
#5
I did not get it
Ban reason: Leeching | http://raiddfzn73ir6iyxlf7nwytnujiflddog...an-Appeals if you feel this is incorrect. (Permanent)
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  @emo Telegram zero day Exploit lulagain 16 2,100 02-09-2026, 01:58 PM
Last Post: etyhtrtgfrt
  China has turned US telecom networks into an intelligence feeder 11ndra 11 1,196 01-21-2026, 09:22 PM
Last Post: exxxiko
  WinRAR zero-day exploited to plant malware on archive extraction lulagain 1 295 12-22-2025, 10:19 AM
Last Post: gu3st
  Your 23andMe genetic data could be bought by China, senator warns lulagain 3 518 08-02-2025, 11:34 AM
Last Post: StormyDon
  Incomplete Patch in NVIDIA Toolkit Leaves CVE-2024-0132 Open to Container Escapes SilverX 0 373 04-12-2025, 06:39 PM
Last Post: SilverX



 Users browsing this thread: 1 Guest(s)