Roundcube Webmail Vulnerability Exploited in Real-World Attacks –
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Credentials - T1589.001 Email Accounts - T1585.002 Email Accounts - T1586.002 Javascript - T1059.007 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Software - T1592.002 Scripting - T1064 Scripting
Show in Graph
Common Information
Type Value
UUID c7bb47f4-e600-4a09-b393-2fa9247de0c6
Fingerprint a0513d0b4b0dee80
Analysis status DONE
Considered CTI value 2
Text language
Published Oct. 24, 2024, 10:03 a.m.
Added to db Oct. 24, 2024, 1:01 p.m.
Last updated Nov. 17, 2024, 6:54 p.m.
Headline Roundcube Webmail Vulnerability Exploited in Real-World Attacks
Title Roundcube Webmail Vulnerability Exploited in Real-World Attacks –
Detected Hints/Tags/Attributes 28/2/5
Source URLs
Redirection Url
Details Source https://gridinsoft.com/blogs/roundcube-vulnerability-exploited/
URL Provider
Details Provider Source level domain
Details gridinsoft.com gridinsoft.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 131 Gridinsoft Blog https://gridinsoft.com/blogs/rss 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 31 
cve-2024-37383
Details Domain 17 
libcdn.org
Details File 10 
map.docx
Details Threat Actor Identifier - APT 783 
APT28
Details Threat Actor Identifier by Recorded Future 11 
TAG-70