I am rebuilding this site (click to read more)
Jump to content

Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials

Jimi Wikman

By 💫 Jimi Wikman

Unknown threat actors have been observed attempting to exploit a now-patched security flaw in the open-source Roundcube webmail software as part of a phishing attack designed to steal user credentials.

Russian cybersecurity company Positive Technologies said it discovered last month that an email was sent to an unspecified governmental organization located in one of the Commonwealth of Independent States (CIS) countries. However, it bears noting that the message was originally sent in June 2024.

URL: https://thehackernews.com/2024/10/hackers-exploit-roundcube-webmail-xss.html
    • Go to stories

    User Feedback

    Recommended Comments

    Jimi Wikman Oracle

    💫 Jimi Wikman

    💫 Owner
    • Owner
    comment_620
    Quote

    The attack chain, per Positive Technologies, is an attempt to exploit CVE-2024-37383 (CVSS score: 6.1), a stored cross-site scripting (XSS) vulnerability via SVG animate attributes that allows for execution of arbitrary JavaScript in the context of the victim's web browser.

    This is pretty bad, especially considering that Roundcube often is the default email program for cPanel based hosting companies, which are a lot...

    Please sign in to comment

    You will be able to leave a comment after signing in



    Sign In Now