MAR-10454006.r4.v2 SEASPY and WHIRLPOOL Backdoors
released on 2023-08-09 @ 09:44:02 PM
CISA obtained four malware samples - including SEASPY and WHIRLPOOL backdoors. The device was compromised by threat actors exploiting CVE-2023-2868, a former zero-day vulnerability affecting versions 5.1.3.001-9.2.0.006 of Barracuda Email Security Gateway (ESG).