Barracuda Networks, a company specializing in email and network security solutions, has issued a warning to its customers regarding a targeted attack on its email security gateway (ESG) appliances. The attack exploited a vulnerability found in the email attachment scanning module. On May 19, the company discovered this issue and promptly released two security patches on May 20 and 21 to address the vulnerability. However, on May 23, Barracuda notified its customers that despite the patches, some ESG appliances may still have been compromised.
The unauthorized access to a subset of email gateway appliances was a direct consequence of this vulnerability, but other products like the software-as-a-service (SaaS) email security services remained unaffected. Barracuda advises customers who are affected to thoroughly evaluate their network environments for any potential compromise beyond the ESG devices. The company is actively monitoring the situation and has informed impacted users through their ESG appliances about the necessary steps to be taken moving forward.
Relevant URL: https://www.darkreading.com/endpoint/threat-actors-compromise-barracuda-email-security-appliances
