China-linked hackers continue to target Barracuda Email Security Gateway (ESG) https://www.barracuda.com appliances, with recent attacks involving exploitation of a new zero-day vulnerability. It was reported in May 2023 that a Barracuda ESG zero-day tracked as CVE-2023-2868 had been exploited since at least October 2022 to deliver malware and steal data from a limited number of organizations that had been using the email security product. In June 2023, researchers attributed the attacks with
