Summary:
- Cybercriminals have discovered a zero-day vulnerability in the Zimbra email and collaboration platform, which they are actively exploiting to gain unauthorized access to systems.
- The vulnerability allows attackers to execute remote code on vulnerable Zimbra servers, potentially leading to data breaches, system compromises, and further attacks on connected industrial control systems (ICS).
- Security experts urge Zimbra users to apply the latest security patches immediately to protect their systems and data from this ongoing threat.