An email vulnerability let hackers steal data from governments around the world
Google's Threat Analysis Group revealed on Thursday that it discovered and worked to help patch an email server flaw used to steal data from governments in Greece, Moldova, Tunisia, Vietnam and Pakistan. The exploit, known as CVE-2023-37580, targeted email server Zimbra Collaboration to pilfer email data, user credentials and authentication tokens from organizations.It started in Greece at the end of June. Attackers that discovered the vulnerability and sent emails to a government organization containing the exploit. If…