Threat Post

Zimbra Server Bugs Could Lead to Email Plundering

Two bugs, now patched except in older versions, could be chained to allow attackers to hijack Zimbra server by simply sending a malicious email. Zimbra webmail server has two flaws that could let an ...
Bleeping Computer

Zimbra zero-day vulnerability actively exploited to steal emails

A cross-site scripting (XSS) Zimbra security vulnerability is actively exploited in attacks targeting European media and government organizations. Zimbra is an email and collaboration platform that ...
ZDNet

Operation EmailThief: Zero-day XSS vulnerability in Zimbra email platform revealed

A roundup of the best software and apps for Windows and Mac computers, as well as iOS and Android devices, to keep yourself safe from malware and viruses. Read now Zimbra is an email platform ...
Ars Technica

Zimbra: Should I do it

Currently our mail is on a VPS at The Planet (I control he physical server as well) running Plesk /w qmail. I despise plesk with every fiber of my being (qmail not being that far behind). <BR><BR>I am ...
CNET

Yahoo! finally using Zimbra

Matt Asay is a veteran technology columnist who has written for CNET, ReadWrite, and other tech media. Asay has also held a variety of executive roles with leading mobile and big data software ...
Bleeping Computer

Zimbra bug allows stealing email logins with no user interaction

Technical details have emerged on a high-severity vulnerability affecting certain versions of the Zimbra email solution that hackers could exploit to steal logins without authentication or user ...
Ars Technica

Unpatched Zimbra flaw under attack is letting hackers backdoor servers

An unpatched code-execution vulnerability in the Zimbra Collaboration software is under active exploitation by attackers using the attacks to backdoor servers. The attacks began no later than ...