|
Email Comments, Questions and Miscellaneous Share your opinion of the email service you're using. Post general email questions and discussions that don't fit elsewhere. |
|
Thread Tools |
26 Oct 2023, 01:50 AM | #1 | |
Essential Contributor
Join Date: Oct 2008
Posts: 276
|
European govt email servers hacked using Roundcube zero-day
Quote:
European govt email servers hacked using Roundcube zero-day |
|
28 Oct 2023, 07:55 AM | #2 |
Essential Contributor
Join Date: Apr 2014
Posts: 399
Representative of:
MXRoute.com |
See I have a big problem with the way bleepingcomputer phrased this article. Their language leaves no room for interpretation: "email servers hacked." It means there was an intrusion into their servers.
But that's not what XSS does. Besides, an XSS vulnerability in Roundcube is about as common as lunch. The moment I saw that there was a CVE my first thought was "Oh look another XSS." Sure enough... |
28 Oct 2023, 04:09 PM | #3 |
Master of the @
Join Date: Feb 2005
Location: USA
Posts: 1,876
|
Isnt is sad Mr Jarland??
Any email server is open to an attack and nothing seems to be able to be done |
28 Oct 2023, 10:54 PM | #4 |
Essential Contributor
Join Date: Apr 2014
Posts: 399
Representative of:
MXRoute.com |
It's been patched. XSS vulnerabilities have their correlations in desktop email clients as well, and the whole concept around attacking someone by this type of vulnerability is a very common one. But this won't be the last XSS vulnerability, always be careful opening shady emails.
|
29 Oct 2023, 04:50 AM | #5 |
Master of the @
Join Date: Feb 2005
Location: USA
Posts: 1,876
|
Yea thats how it should be but sadly it wont ever be perfect (1 person might still open one)
|