URL has been copied successfully!
Russian APT targets Ukraine via Zimbra XSS flaw CVE-2025-66376
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Russian APT targets Ukraine via Zimbra XSS flaw CVE-2025-66376


Tags: , , , , , , , , ,

Russian APT exploits a critical XSS flaw in Zimbra, tracked as CVE-2025-66376, running scripts via HTML emails to target users in Ukraine. Russia-linked threat actor exploits a high-severity XSS vulnerability, tracked as CVE-2025-66376 (CVSS score of 7.2), in Zimbra Collaboration. Attackers exploited insufficiently sanitized HTML emails to run scripts when opened, targeting users in Ukraine. […]

First seen on securityaffairs.com

Jump to article: securityaffairs.com/189673/security/russian-apt-targets-ukraine-via-zimbra-xss-flaw-cve-2025-66376.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Russian APT RomCom combines Firefox and Windows zero-day flaws in drive-by exploit
  2. Russian APT RomCom combines Firefox and Windows zero-day flaws in drive-by exploit
  3. Russian APT RomCom combines Firefox and Windows zero-day flaws in drive-by exploit
  4. Russian APT RomCom combines Firefox and Windows zero-day flaws in drive-by exploit