> TritonInfoSec News
Home / Mar 20, 2026 / Story
0
#8 BleepingComputer general March 19, 2026 at 14:55 UTC

Russian hackers exploit Zimbra flaw in Ukrainian govt attacks

By Sergiu Gatlan

AI Summary

APT28 (Russian GRU-linked group) is exploiting a Zimbra Collaboration Suite vulnerability to target Ukrainian government entities through malicious CSS content in HTML emails. The attacks leverage insufficient input sanitization to execute inline scripts when messages are opened in browsers.

Read full article → https://www.bleepingcomputer.com/news/security/rus…

Relevance score: 78.0/100

# More from March 20

  1. 1
    Feds Disrupt IoT Botnets Behind Huge DDoS Attacks Krebs on Security
  2. 2
    Hundreds of millions of iPhones can be hacked with a new tool found in the wild Ars Technica Security
  3. 3
    New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-stores BleepingComputer
  4. 4
    FBI seizes Handala data leak site after Stryker cyberattack BleepingComputer
  5. 5
    CISA urges US orgs to secure Microsoft Intune systems after Stryker breach BleepingComputer
  6. 6
    Critical Microsoft SharePoint flaw now exploited in attacks BleepingComputer
  7. 7
    Interlock ransomware gang exploited Cisco firewall zero-day weeks before disclosure: Amazon The Record
  8. 9
    Navia discloses data breach impacting 2.7 million people BleepingComputer
  9. 10
    54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security The Hacker News