Date of report
- June 2023
- Believed to be the work of the Chinese government
A Chinese threat actor compromised Barracuda brand email security gateway systems and used access to infiltrate networks attached to the Barracuda products. Once the campaign was detected, the attackers rapidly expanded their persistence on compromised systems, leading Barracuda to tell affected customers to destroy their devices due to the potential for continued compromise.
- Users of the Barracuda email security gateway, including trade offices and academic research organizations in Taiwan and Hong Kong
Suspected state sponsor
Type of incident
- Civil society