Alerts Events DCR

Go to listing page

EmailThief Operation Exploits Zero-Day Vulnerability in Zimbra Email Platform to Spy on Users

A likely Chinese threat actor is actively attempting to exploit a zero-day vulnerability in the Zimbra open-source email platform as part of spear-phishing campaigns that commenced in December 2021.

Zimbra
Email Platform
EmailThief operation
zero-day vulnerability
cross-site scripting (XSS)

Publisher