You are here

CISA Releases IOCs Associated with Malicious Barracuda Activity

CISA Releases IOCs Associated with Malicious Barracuda Activity

Created: Thursday, August 31, 2023 - 12:37
Categories:
Cybersecurity, Federal & State Resources

CISA has released additional indicators of compromise (IOCs) associated with exploitation of CVE-2023-2868. CVE-2023-2868 is a remote command injection vulnerability affecting Barracuda Email Security Gateway (ESG) Appliance, versions 5.1.3.001-9.2.0.006. Malicious threat actors exploited this vulnerability as a zero day as early as October 2022 to gain access to ESG appliances. 

Members are encouraged to download the newly released IOCs associated with this activity. Read more at CISA.

Previous WaterISAC Reporting: