ESET researchers have uncovered RoundPress, a Russia-aligned espionage operation targeting webmail servers via XSS vulnerabilities. Behind it is most likely the Russia-aligned Sednit (also known as Fancy Bear or APT28) cyberespionage group, holding the ultimate goal of stealing confidential data from specific email accounts. Operation RoundPress compromise chain (Source: ESET) Targets Most of the targets are related to the current war in Ukraine. They are either Ukrainian governmental entities or defense companies in Bulgaria and … More
The post Russia-linked hackers target webmail servers in Ukraine-related espionage operation appeared first on Help Net Security.
This article has been indexed from Help Net Security