Cybersecurity firm Mandiant has unveiled the details of a sophisticated global espionage campaign allegedly orchestrated by a Chinese-nexus threat group known as UNC4841. This group, believed to have connections with the People’s Republic of China, utilized a zero-day vulnerability (CVE-2023-2868) in Barracuda Email Security Gateway (ESG) appliances to infiltrate government and government-linked organizations worldwide.

Source: Infosecurity