Barracuda: Replace attacked ESG hardware
The otherwise secure Barracuda Email Security Gateway Appliances (ESG) have a problem: In mid-May 2023, Barracuda identified the vulnerability (CVE-2023-28681) on their appliances, which was actively attacked. However, the existing security update is not able to close backdoors created by malware. Barracuda therefore recommends immediate hardware replacement. Initially, as with many vulnerabilities found, all started: On May 18, 2023, Barracuda was made aware of anomalous traffic originating from Barracuda Email Security Gateway (ESG) appliances. The very next day, Barracuda identified the vulnerability (CVE-2023-28681) which was already being actively exploited....