Email security , Vulnerability Management , Patch/Configuration Management Thousands of Zimbra servers vulnerable to actively exploited flaw April 27, 2026 Share By SC Staff (Adobe Stock) Over 10,000 Zimbra Collaboration Suite (ZCS) instances remain exposed online and vulnerable to ongoing attacks exploiting a cross-site scripting (XSS) security flaw, according to nonprofit security organization Shadowserver. Zimbra is a widely used email and collaboration software suite utilized by hundreds of millions globally, including numerous government agencies and businesses. The vulnerability, tracked as CVE-2025-48700, affects multiple versions of ZCS and allows unauthenticated attackers to access sensitive information by executing arbitrary JavaScript within a user's session, according to a recent report by Bleeping Computer. The vulnerability affects Zimbra Collaboration Suite versions 8.8.15, 9.0, 10.0, and 10.1. Exploitation requires no user interaction and can be triggered when a user views a maliciously crafted email in the Zimbra Classic UI. Synacor released security patches in June 2025. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) flagged CVE-2025-48700 as actively abused in the wild and added it to its Known Exploited Vulnerabilities Catalog, ordering Federal Civilian Executive Branch agencies to secure their Zimbra servers by April 23. Shadowserver reported over 10,500 unpatched Zimbra servers exposed online, with the majority located in Asia and Europe. Similar XSS vulnerabilities have been exploited by state-backed actors like APT28 and APT29 in targeted attacks against government entities and organizations. Source: Bleeping Computer SC Staff Related Data Security Controlling AI at machine speed: Detecting risk, protecting systems, and reversing mistakes Paul Wagenseil April 24, 2026 Managing the behavior of AI agents requires a data-centric, continuous, and adaptive new approach to security. Threat Intelligence Ironscales CEO: AI has reset email threat landscape SC Staff April 22, 2026 Ironscales founder and CEO Eyal Benishti warns that the rise of generative artificial intelligence has effectively neutered traditional secure email gateways by eliminating the very signals, malformed syntax, malicious attachments, and compromised sender reputations, upon which legacy detection models were architected, according to Forbes. Phishing Apple account notifications abused for iPhone purchase phishing scams SC Staff April 20, 2026 The phishing campaign involves creating an Apple ID and strategically placing scam text within the first and last name fields. Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms Bug Buffer Overflow Bring Your Own Device (BYOD) Disassembly Eavesdropping Email Spoofing Internet Message Access Protocol (IMAP) Post Office Protocol, Version 3 (POP3) Spam Store-and-Forward You can skip this ad in 5 seconds