confirmed
Operation RoundPress
APT28 campaign targeting webmail servers including Roundcube, Horde, MDaemon and Zimbra via cross-site scripting vulnerabilities in spearphishing emails. Targeted government entities and defence companies primarily in Europe.
Start date
1 January 2023
End date
—
Techniques
0
Attributed actors
Targeting
Sectors
governmentdefence
Regions
Europe
Indicators of compromise
No IOCs linked to this campaign yet.