Patches have been issued by Zimbra for an actively exploited zero-day flaw in its Zimbra Collaboration Suite email servers two weeks after initial disclosure, reports BleepingComputer.
The U.S. Department of Justice, Cybersecurity and Infrastructure Security Agency, and Federal Trade Commission have been urged by Sen. Ron Wyden, D-Ore., to look into the negligence of Microsoft in the recent Chinese state-sponsored hacking of the email accounts of leading officials, including U.S. Commerce Secretary Gina Raimondo, according to The Record, a news site by cybersecurity firm Recorded Future.
The private encryption key used by Chinese hackers to break into the email accounts of high-level U.S. government officials also gave them access to a vast array of other Microsoft products, according to new research.
Microsoft Exchange servers used by Ukraine's and Eastern Europe's defense sector have been targeted in new attacks by Russian state-backed hacking group Turla, also known as UAC-0003, KRYPTON, and Secret Blizzard, deploying the novel DeliveryCheck backdoor, BleepingComputer reports.
Standard license holders will get access to more than 30 types of logging previously available to higher paying customers, and all logs will be stored for twice as long, 180 days, by default.
Ukraine has been facing a continuous onslaught of attacks against its state services from Russian hacking group Gamaredon, also known as Armageddon, with the country's Computer Emergency Response Team noting the group's targeting of an information infrastructure facility and thousands of government computers, according to The Record, a news site by cybersecurity firm Recorded Future.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
