ioc[.]one - OSINT Cyber Threat Intelligence Database

Spearphishing Campaign Targets Zimbra Webmail Portals of Government Organizations

Tags

country:	France Indonesia Spain Russia Ukraine
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Credentials - T1589.001 Email Accounts - T1585.002 Email Accounts - T1586.002 Ip Addresses - T1590.005 Malicious Link - T1204.001 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Software - T1592.002 Web Services - T1583.006 Web Services - T1584.006 Vulnerabilities - T1588.006 Connection Proxy - T1090 Scripting - T1064 Scripting

Show in Graph

Common Information

Type	Value
UUID	91128f54-c98a-4e6f-be30-97c116d0bf04
Fingerprint	6ef70d998730bee9
Analysis status	DONE
Considered CTI value	0
Text language
Published	April 1, 2010, midnight
Added to db	July 17, 2023, 4:28 p.m.
Last updated	Nov. 18, 2024, 2:38 a.m.
Headline	Spearphishing Campaign Targets Zimbra Webmail Portals of Government Organizations
Title	Spearphishing Campaign Targets Zimbra Webmail Portals of Government Organizations
Detected Hints/Tags/Attributes	64/3/28

Source URLs

	Redirection	Url
Details	Source	https://blog.eclecticiq.com/spearphishing-campaign-targets-zimbra-webmail-portals-of-government-organizations

URL Provider

Details	Provider	Source level domain
Details	eclecticiq.com	blog.eclecticiq.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	32	✔	EclecticIQ Blog	https://blog.eclecticiq.com/rss.xml	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	48	cve-2020-35730
Details	CVE	24	cve-2020-12641
Details	Domain	1	chilipepper.io
Details	Domain	6	webflow.io
Details	Domain	1	pimm-blaj.ro
Details	Domain	1	revistafiscala.ro
Details	Domain	1	sangwishsa.com
Details	Domain	1175	gmail.com
Details	Domain	110	exploit.in
Details	Domain	1	mail.dasu.gov.ua
Details	Domain	1	kv.npu.gov.ua
Details	Domain	1	dpsscn.gov.ua
Details	Domain	8	param.st
Details	Domain	49	eclecticiq.com
Details	Domain	10	roundcube.net
Details	Domain	642	nvd.nist.gov
Details	Domain	1373	twitter.com
Details	Domain	6	blog.zimbra.com
Details	Email	1	ctousey29@gmail.com
Details	Email	1	ctousey@gmail.com
Details	Email	47	research@eclecticiq.com
Details	IPv4	1	188.241.177.108
Details	IPv4	1	154.16.192.141
Details	Url	1	https://roundcube.net/download
Details	Url	1	https://nvd.nist.gov/vuln/detail/cve-2020-35730
Details	Url	1	https://nvd.nist.gov/vuln/detail/cve-2020-12641
Details	Url	1	https://twitter.com/maddiestone/status/1679542322772721664
Details	Url	2	https://blog.zimbra.com/2023/07/security-update-for-zimbra-collaboration-suite-version-8-8-15