Hackers Exploit Zimbra and Roundcube Email Servers
A new spear-phishing campaign that uses exploited Zimbra and Roundcube email servers to target government organizations.
An alarming spear-phishing campaign has been uncovered, specifically aimed at government organizations. This attack preys on the vulnerabilities of Zimbra and Roundcube email servers. It is crucial that immediate action is taken to secure these servers and prevent any further breaches. Investigations by EclecticIQ revealed that the initial campaigns
![](https://industrialcyber.co/wp-content/uploads/2023/04/2023.04.03-Webmail-portals-of-NATO-aligned-governments-in-Europe-hacked-by-TA473-hackers-using-known-Zimbra-vulnerability.jpg)
Webmail portals of NATO-aligned governments in Europe hacked by TA473 hackers using known Zimbra vulnerability - Industrial Cyber
![](https://files.scmagazine.com/wp-content/uploads/2023/07/0725_phishing.jpg)
Roundcube 0-day used to steal European government emails
![](https://www.hackread.com/wp-content/uploads/2024/03/sting-takes-down-dark-web-nemesis-market.jpg)
International Sting Takes Down Major Dark Web Marketplace Nemesis Market
![](https://securityaffairs.com/wp-content/uploads/2023/08/image-36.png)
Zimbra Collaboration Suite Archives - Security Affairs
![](https://media.cybernews.com/2021/05/defi.jpg)
Crypto boom: what you need to know before diving in
![](https://media.cybernews.com/images/750w/2021/05/dogecoin.jpg)
Crypto boom: what you need to know before diving in
![](https://www.bleepstatic.com/content/hl-images/2022/09/13/hacker-successful-attack.jpg)
Winter Vivern hackers exploit Zimbra flaw to steal NATO emails
![](https://blackkite.com/wp-content/uploads/2023/05/zimbra-2-1024x589.png)
MalasLocker Ransomware: Exploiting Zimbra Servers for Charity and its Global Impact - Black Kite
![](https://www.eclecticiq.com/hubfs/_blogs/corporate-blog/2023/Zimbra-webmail-article/Zimbra%20webmail_image9.png)
Spearphishing Campaign Targets Zimbra Webmail Portals of Government Organizations
![](https://sm.pcmag.com/pcmag_uk/photo/a/a-screensh/a-screenshot-of-a-computer-program-in-chinese_3hpe.jpg)
Chinese State-Backed Institute Claims to Have Cracked AirDrop
![](https://www.bleepstatic.com/content/hl-images/2024/01/17/CISA.jpg)
CISA: Roundcube email server bug now exploited in attacks
![](https://nb.wizcase.com/wp-content/uploads/2023/04/European-Government-Emails-Stolen-Through-Exploiting-Vulnerability-in-Zimbra-Email-Platform.jpg)
European Government Emails Stolen Through Exploiting Vulnerability in Zimbra Email Platform
![](https://sm.pcmag.com/t/pcmag_uk/news/c/chinese-st/chinese-state-backed-institute-claims-to-have-cracked-airdro_mqyt.1200.jpg)
Chinese State-Backed Institute Claims to Have Cracked AirDrop
![](https://upload.wikimedia.org/wikipedia/commons/2/25/Roundcube_1.6.0_screenshot.png)
Roundcube - Wikipedia
![](https://blog.eclecticiq.com/hubfs/_blogs/corporate-blog/2023/Intrusion%20blog%20banner.png#keepProtocol)
Spearphishing Campaign Targets Zimbra Webmail Portals of Government Organizations