Security bug fixes and OpenSSL upgrade Zimbra OpenSSL now runs in FIPS-compliant mode by default. This increases security which requires no additional action on your part. However, should you run into issues, you can find steps to disable OpenSSL FIPS in the release notes. This patch upgrades OpenSSL to major version 3.0.x. To safeguard your […]
Archive | Security & Privacy
Security Update for Zimbra Collaboration Suite Version 8.8.15 CVE-2023-37580
An XSS vulnerability in Zimbra Collaboration Suite Version 8.8.15 that could potentially impact the confidentiality and integrity of your data has surfaced. We take this matter very seriously and have already taken immediate action to address the issue. Important: This vulnerability has been actively exploited, making it imperative to take immediate action. We strongly recommend […]
Sending incoming email with bad headers to Junk
Email is always evolving and recently Gmail has started to reject email with bad headers for some customers. Rejecting email with bad headers may help protect against DKIM replay attacks (more on replay attacks in an upcoming blog). When we are talking about messages with bad headers, we mean messages that are not compliant with […]
When your security scanner alerts for jspawnhelper in Zimbra
Many administrators rely on third-party security scanners such as Crowdstrike Falcon to analyze their Zimbra server for malicious activity. One process that is frequently reported is jspawnhelper. What is jspawnhelper? While this is not very well documented, jspawnhelper can be run as the result of a call to ProcessBuilder.start() or Runtime.exec() in a java application. […]
New phishing attacks may use .zip, .mov and other new Internet domains
Beware of fraudulent activities using the newly launched .zip and .mov top-level domains. Phishing attacks have already targeted well-known brands like Microsoft and Okta. Apart from phishing, the new .zip and .mov TLDs have also been used for various malicious purposes like hosting zip bombs, redirecting to YouTube videos, and offering file compression services. Here […]
Patch for Zimbra Daffodil 10.0.1, 9.0.0 Patch-33 & 8.8.15 Patch-40
Cases of Compromised Servers are still a concern for 9.0.0 and 8.8.15 servers It has come to our attention that compromised systems are still prevalent and have not been adequately cleaned. Proactive security measures is essential for the long-term success of your organization. To safeguard your system, we recommend you always upgrade to the latest […]