phaeton  ⏚9h ago
Quelqu'un connait #zimbra le nouveau serveur de messagerie de l'éducation nationale. A part qu'ils ont changé de propriétaire que 4x en 10 ans, que ça valeur a été divisée par 10 et qu'elle a été attaquée par en rançongiciel en 2023 je ne trouve pas grand chose.
Show threadwebelys1d ago
@PatriceA @ekimia @plossra_a sous le contrôles des autres membres du @plossra_a nous avons de la maîtrise en #carbonio #zimbra #mail (#imap #pop #webmail ...) mais pas de #bluemind à proprement parler
https://www.ploss-ra.fr/membres/
Les membres – PLOSS-RA

Marcel SIneM(S)US3d ago
Warnung vor Angriffen auf Cisco FMC, #SharePoint und #Zimbra | Security https://www.heise.de/news/Warnung-vor-Angriffen-auf-Cisco-FMC-SharePoint-und-Zimbra-11217003.html #Patchday #XSS #CrossSiteScripting
Warnung vor Angriffen auf Cisco FMC, SharePoint und Zimbra

Cyberkriminelle greifen derzeit Schwachstellen in Cisco FMC, SharePoint und Zimbra an. Updates zum Schließen der Lücken stehen bereit.

heise online
CyberVeille.ch4d ago
📢 CISA ordonne aux agences fédérales de sécuriser Zimbra face à une vulnérabilité activement exploitée
📝 Selon BleepingComputer, **CISA** a ordonné aux **agences gouverne...
📖 cyberveille : https://cyberveille.ch/posts/2026-03-19-cisa-ordonne-aux-agences-federales-de-securiser-zimbra-face-a-une-vulnerabilite-activement-exploitee/
🌐 source : https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-zimbra-xss-flaw-exploited-in-attacks/
#CISA #Zimbra #Cyberveille
thecybermind4d ago

Zimbra XSS Audit: Signature-based defense is failing. Our latest look at #Zimbra reveals how silent XSS payloads bypass legacy filters. At #TheCyberMindCo, we’re building the Sentinel Alpha on 64-bit NVMe to catch behavioral anomalies in real-time. The blind spot ends here. #CyberSecurity #NCTAG

https://thecybermind.co/2026/03/20/the-zimbra-collaboration-suite/?utm_source=mastodon&utm_medium=jetpack_social

Alarming Zimbra Collaboration Suite Vulnerability TheCyberMind™ 2026

The Zimbra Collaboration Suite Vulnerability by TheCyberMind™ takes us on a deep dive into this and gives us the tools to combat it.

The Cyber Mind
The New Oil4d ago

Russian hackers exploit #Zimbra flaw in Ukrainian govt attacks

https://www.bleepingcomputer.com/news/security/russian-apt28-military-hackers-exploit-zimbra-flaw-in-ukrainian-govt-attacks/

#cybersecurity #Russia #Ukraine

Russian hackers exploit Zimbra flaw in Ukrainian govt attacks

Hackers part of APT28, a state-backed threat group linked to Russia's military intelligence service (GRU), are exploiting a Zimbra Collaboration Suite (ZCS) vulnerability in attacks targeting Ukrainian government entities.

BleepingComputer
The New Oil4d ago

#CISA orders feds to patch #Zimbra #XSS flaw exploited in attacks

https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-zimbra-xss-flaw-exploited-in-attacks/

#cybersecurity

CISA orders feds to patch Zimbra XSS flaw exploited in attacks

CISA has ordered U.S. government agencies to secure their servers against an actively exploited vulnerability in the Zimbra Collaboration Suite (ZCS).

BleepingComputer
AA5d ago

If you missed this yesterday, CISA added two vulnerabilities to the KEV catalogue.

- CVE-2026-20963: Microsoft SharePoint Deserialization of Untrusted Data Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-20963

- CVE-2025-66376: Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-66376 #CISA #infosec #Zimbra #Microsoft #vulnerability

securityaffairs5d ago
Russian APT targets Ukraine via #Zimbra XSS flaw CVE-2025-66376
https://securityaffairs.com/189673/hacking/russian-apt-targets-ukraine-via-zimbra-xss-flaw-cve-2025-66376.html
#securityaffairs #hacking #Russia
Russian APT targets Ukraine via Zimbra XSS flaw CVE-2025-66376

Russian APT exploits a critical XSS flaw in Zimbra, tracked as CVE-2025-66376, running scripts via HTML emails to target users in Ukraine.

Security Affairs
securityaffairs5d ago
U.S. CISA adds #Microsoft #SharePoint and #Zimbra  flaws to its Known Exploited Vulnerabilities catalog
https://securityaffairs.com/189628/security/u-s-cisa-adds-microsoft-sharepoint-and-zimbra-flaws-to-its-known-exploited-vulnerabilities-catalog.html
#securityaffairs #hacking
U.S. CISA adds Microsoft SharePoint and Zimbra  flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SharePoint and Zimbra flaws to its Known Exploited Vulnerabilities catalog.

Security Affairs