Winter Vivern group exploited a zero-day cross-site scripting (XSS) vulnerability in Roundcube servers. The group targeted governmental entities and a think tank in Europe. Winter Vivern is known for targeting governments in Europe and Central Asia. It has been active since 2020 and is suspected to be linked to MoustachedBouncer group. The newly exploited vulnerability allows remote exploitation by sending a specially crafted email message. Winter Vivern's ability to exploit a zero-day vulnerability in Roundcube is a concerning development in cyber-espionage. #WinterVivern #cybersecurity #XSS #Roundcube

https://www.infosecurity-magazine.com/news/winter-vivern-zero-day-targets/