Close Menu

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    What's Hot

    Zimbra urges customers to patch critical web client XSS flaw

    July 10, 2026

    New Helix vishing group emerges in SharePoint data theft attacks

    July 10, 2026

    Former ransomware negotiator gets 4 years for BlackCat attacks

    July 10, 2026
    Facebook X (Twitter) Instagram
    • Demos
    • Technology
    • Gaming
    • Buy Now
    Facebook X (Twitter) Instagram Pinterest Vimeo
    Canadian Cyber WatchCanadian Cyber Watch
    • Home
    • News
    • Alerts
    • Tips
    • Tools
    • Industry
    • Incidents
    • Events
    • Education
    Subscribe
    Canadian Cyber WatchCanadian Cyber Watch
    Home»News»Zimbra urges customers to patch critical web client XSS flaw
    News

    Zimbra urges customers to patch critical web client XSS flaw

    adminBy adminJuly 10, 2026No Comments3 Mins Read
    Share Facebook Twitter Pinterest LinkedIn Tumblr Reddit Telegram Email
    Share
    Facebook Twitter LinkedIn Pinterest Email


    Zimbra

    The Zimbra security team urged customers to patch a critical vulnerability affecting the Classic Web Client used to access the Zimbra Collaboration suite.

    Zimbra is a very popular email and collaboration software suite used by hundreds of millions of people, including thousands of businesses and hundreds of government agencies worldwide. Also known as the Classic UI, this Ajax-based webmail interface is faster than Zimbra’s modern web client, which requires more resources when loading large email folders.

    The company released Zimbra 10.1.19 this Tuesday to patch this stored cross-site scripting (XSS) security flaw, which has yet to receive a CVE ID for easy tracking. Attackers can exploit this Classic Web Client security issue through specially crafted emails that execute malicious code when the email is opened.

    image

    Successful exploitation could help threat actors steal session data, account settings, or mailbox information.

    “Any customer using the Classic Web Client should upgrade to ZCS v10.1.19 as soon as possible, as this issue only impacts the users of Classic Web Client,” Zimbra warned. “We strongly recommend upgrading to this version to keep your environment secure.”

    While Zimbra has not yet tagged this vulnerability as exploited in the wild, the flaw was reported by Google’s Threat Analysis Group, which frequently flags zero-day exploits deployed by state-backed hacking groups in cyberattacks targeting high-risk individuals, including opposition politicians, dissidents, and journalists.

    Targeting by Russian state hackers

    Zimbra security issues have been frequently exploited in attacks by Russian state-sponsored hackers in recent years to compromise thousands of vulnerable servers.

    For instance, the Russian-sponsored Winter Vivern hacking group used a reflected XSS exploit to breach Zimbra webmail portals in February 2023, stealing emails from NATO-aligned organizations and individuals, including government officials, military personnel, and diplomats.

    In October 2024, U.S. and U.K. cyber agencies have also warned that APT29 (also known as Midnight Blizzard and Cozy Bear) hackers working for Russia’s Foreign Intelligence Service (SVR) were targeting vulnerable Zimbra servers“at a mass scale” using an exploit that targeted a flaw previously abused to steal email account credentials.

    More recently, in March, the Cybersecurity and Infrastructure Security Agency (CISA) ordered federal agencies to patch another Zimbra XSS flaw (CVE-2025-66376) exploited by hackers linked to the APT28 group (linked to Russia’s military intelligence service) in attacks targeting Ukrainian government entities.

    In April, nonprofit security organization Shadowserver warned that over 10,500 Zimbra Collaboration Suite (ZCS) instances exposed online were still vulnerable to ongoing attacks exploiting another cross-site scripting (XSS) security flaw (tracked as CVE-2025-48700).


    article image

    Security teams log 54% of successful attacks and alert on just 14%. The rest move through your environment unseen.

    The Picus whitepaper shows how breach and attack simulation tests your SIEM and EDR rules so threats stop slipping by detection.

    Get the whitepaper



    Source link

    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
    Previous ArticleNew Helix vishing group emerges in SharePoint data theft attacks
    admin
    • Website

    Related Posts

    News

    New Helix vishing group emerges in SharePoint data theft attacks

    July 10, 2026
    News

    Former ransomware negotiator gets 4 years for BlackCat attacks

    July 10, 2026
    News

    5 Major Emerging Risks to Large-Scale Events

    July 9, 2026
    Add A Comment

    Comments are closed.

    Demo
    Top Posts

    Catchy & Intriguing

    March 17, 202677 Views

    The Canadian Password Playbook: Navigating Compliance and Building Strong Passwords

    March 25, 202634 Views

    IP Address Investigations and Local OSINT

    March 20, 202633 Views
    Stay In Touch
    • Facebook
    • YouTube
    • TikTok
    • WhatsApp
    • Twitter
    • Instagram
    Latest Reviews
    85
    Featured

    Pico 4 Review: Should You Actually Buy One Instead Of Quest 2?

    January 15, 2021 Featured
    8.1
    Uncategorized

    A Review of the Venus Optics Argus 18mm f/0.95 MFT APO Lens

    January 15, 2021 Uncategorized
    8.9
    Editor's Picks

    DJI Avata Review: Immersive FPV Flying For Drone Enthusiasts

    January 15, 2021 Editor's Picks

    Subscribe to Updates

    Get the latest tech news from FooBar about tech, design and biz.

    Demo
    Most Popular

    Catchy & Intriguing

    March 17, 202677 Views

    The Canadian Password Playbook: Navigating Compliance and Building Strong Passwords

    March 25, 202634 Views

    IP Address Investigations and Local OSINT

    March 20, 202633 Views
    Our Picks

    Zimbra urges customers to patch critical web client XSS flaw

    July 10, 2026

    New Helix vishing group emerges in SharePoint data theft attacks

    July 10, 2026

    Former ransomware negotiator gets 4 years for BlackCat attacks

    July 10, 2026

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    Facebook X (Twitter) Instagram Pinterest
    • Home
    • Technology
    • Gaming
    • Phones
    • Buy Now
    © 2026 ThemeSphere. Designed by ThemeSphere.

    Type above and press Enter to search. Press Esc to cancel.