Barracuda Networks zero-day has been exploited for 7 months to steal data

John Leonard
clock • 2 min read
Barracuda Networks zero-day has been exploited for 7 months to steal data
Image:

Barracuda Networks zero-day has been exploited for 7 months to steal data

Customers urged to ensure email security gateway appliances are up-to-date, halt the use of compromised and refresh all credentials

Barracuda Networks has disclosed that a zero-day vulnerability in its Email Security Gateway (ESG) appliances had been exploited for at least seven months and used to steal data, before it was fixe...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Microsoft announces critical zero-day Exchange bug

Security

Enables remote control of Exchange Server

clock 16 February 2024 • 1 min read
Microsoft's Patch Tuesday fixes two actively exploited vulnerabilities

Threats and Risks

73 bugs fixed in February update

clock 14 February 2024 • 2 min read
HPE says Russian state actor breached email systems

Hacking

Midnight Blizzard suspected as the attackers

clock 26 January 2024 • 2 min read

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

More on Threats and Risks

LockBit re-emerges a week after takedown

LockBit re-emerges a week after takedown

'Damage control for the LockBit brand, a show of strength'

John Leonard
clock 26 February 2024 • 2 min read
Massive data leak exposes Chinese infosec vendor's cyberattacks-for-hire

Massive data leak exposes Chinese infosec vendor's cyberattacks-for-hire

Documents outline the use of hardware hacking devices, including a malicious power bank designed to surreptitiously upload data into victims' systems

clock 23 February 2024 • 3 min read
Operation Cronos: NCA reveals details of LockBit affiliates

Operation Cronos: NCA reveals details of LockBit affiliates

Operation has been crippled - for now

clock 22 February 2024 • 3 min read