Barracuda Urges Immediate Replacement of Vulnerable Email Security Appliances.

June 8, 2023 at 08:19 PM

•

1 min read

TL;DR Summary

Barracuda Networks urged its Email Security Gateway (ESG) customers to replace affected appliances instead of patching them after discovering a zero-day vulnerability that allowed attackers persistent backdoor access to the devices. The company said the malware was identified on a subset of appliances, and evidence of data exfiltration was identified on some systems. Experts suggest that the malware was able to corrupt the underlying firmware that powers the ESG devices in some irreparable way, indicating a state actor. Barracuda advises customers to rotate any credentials connected to the appliance(s) and check for signs of compromise dating back to at least October 2022.

Topics:business #barracuda-networks #cybersecurity #email-security-gateway #incident-response #malware #vulnerability

Share this article

Barracuda Urges Replacing — Not Patching — Its Email Security Gateways – Krebs on Security Krebs on Security
Barracuda says hacked ESG appliances must be replaced immediately BleepingComputer
Barracuda Warns All ESG Appliances Need Urgent Rip & Replace DARKReading
Barracuda: Customers Must Replace Impacted Email Security Devices ‘Immediately’ CRN
Barracuda urges customers to replace vulnerable appliances immediately CSO Online

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

82%

575 → 102 words

Want the full story? Read the original article

Read on Krebs on Security

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights