"CISA Discovers Submarine Malware on Compromised Barracuda ESG Appliances"

The Cybersecurity and Infrastructure Security Agency (CISA) has discovered a new malware strain called Submarine on compromised Barracuda ESG (Email Security Gateway) appliances used by federal agencies. The malware, deployed by a suspected pro-China hacker group, was used for detection evasion, persistence, and data harvesting. This comes after a previous attack where a zero-day bug was exploited to backdoor the appliances. Barracuda has offered replacement devices to affected customers and advised thorough review of networks for potential compromise. CISA warns that the Submarine malware poses a severe threat for lateral movement and urges reporting of suspicious activities.