Barracuda, a provider of email and network security solutions, has warned customers that some of its Email Security Gateway (ESG) devices were breached last week due to a previously patched zero-day vulnerability. On Friday, the 19th, the company discovered a flaw in the email attachment validation module. The issue was resolved with two security patches on the 20th and 21st.
While the flaw was patched over the weekend, Barracuda warned on Tuesday that some of its ESG customers’ devices had been compromised using a security flaw that has now been fixed. “Based on our investigation to date, we have determined that the vulnerability resulted in unauthorized access to an email gateway subsystem,” the company said.
“Users whose devices we believe were affected were notified via the ESG user interface of the actions to be taken,” Barracuda said, noting that it has also reached out to those specific customers.
The company’s other products, including SaaS email security services, were not affected by this impact.
Look at this
The Qbot campaign uses malware to hijack commercial emails
A useful Exchange Online feature to block malicious emails
The company said the investigation is limited to its ESG product and not to corporate networks of clients. Therefore, the company advises affected organizations to review their environment to ensure that threat actors have not spread to other devices on the network. “If the customer has not received a notification from us through the ESG user interface, we have no reason to believe that their environment is compromised at this time and there is no action for the customer to take,” said Barracuda.
The security solutions provider also addressed a login issue affecting Email Gateway Defense (EGD) devices and an error scoring algorithm that caused customer emails to be blocked incorrectly. Barracuda says its enterprise-grade security solutions are now used by more than 200,000 organizations worldwide, including Samsung, Mitsubishi, Kraft Heinz, Delta Airlines and others.
Related posts:
Barracuda warns about email gateway violations via a zero-day flaw
Formula 1: Timing of the partnership announcement between Aston Martin and Honda
Thirty-five footballers have sought help for gambling addiction
Driver breakdowns cost their teams an incredible amount
The company buys credit rights from owners of vehicles equipped with Takata airbags
The company buys credit rights from owners of vehicles equipped with Takata airbags
Greenwashing: Half of the product labels are “green” without proof of what they claim
Ecological lies and unfair competition
Warns of critical switching errors and public abuse code
What is DVI? DVI Input and DVI Cable 2023
A cloud system bug exposed customer data
F1 shows solidarity amid flooding in northern Italy – Formula 1 News
Brute Force Attacks Bypass Android’s Biometric Defenses
Top 10 Cloud Mining Systems to Generate Income We Made in 2023
Launches $15M crypto bug bounty program
German Highway A14 Macabre Accident, Decapitated Porsche Driver
Musk warns: Difficult times ahead for the world economy
Today Is The Big Day For These 42 Altcoins: Here’s What They’ll Be Like!
Android Auto: Will Google Drive Your Car? Know it!
We are launching a monthly business package for all our customers – When will it be offered for free
Porsche Cars offers services using mixed reality from Microsoft and HoloLens 2 – Microsoft News Center Brasil
The Mercedes-Benz showroom has more than a thousand vehicles for sale
This is how the first pan-European smart home payment system is being built
Top 10: The best vintage muscle cars of all time
Annoying bug in iOS 16.5 update! It doesn’t work officially
The Galaxy A24 has an interesting bug
learn how to take good care of yourself in a short time and ensure family fun
Peugeot and Citroen dealers complain about the quality of the cars; Stellantis does not satisfy | Market
Top 10 Blood Pressure Tips
Hot Development for These 6 Altcoins: There Are 6 New Partnerships!
