Pro-Russian hackers Winter Vivern attack mailboxes of government agencies in Europe
The pro-Russian and Belarusian hacker group Winter Vivern exploits a zero-day vulnerability in common webmail software in attacks on government agencies and think tanks in Europe. This was stated by researchers at ESET, a security company, according to Ars Technica.
According to ESET, the attacks began on October 11, and Roundcube released a patch on October 14.
Winter Vivern has been active since at least 2020 and targets governments and think tanks, primarily in Europe and Central Asia. In March, the group was seen targeting U.S. government officials who had expressed support for Ukraine in its efforts to repel the Russian invasion.