Barracuda, an email and network security firm, is actively working to resolve an ongoing issue that is causing invalid login errors for users of its Email Gateway Defense.
The company has identified the root cause of the problem and is projected to release a fix on or before July 14th. While the details of the login issues and their extent have not been disclosed, Barracuda expresses gratitude for understanding and support, apologizing for any inconvenience caused.
This incident follows a series of data theft attacks where a suspected pro-China hacker group, identified as UNC4841 by Mandiant, exploited a zero-day bug (CVE-2023-2868) in Barracuda’s ESG (Email Security Gateway) appliances. The vulnerability, which had been under active exploitation since at least October 2022, allowed the attackers to drop previously unknown malware and steal data.
As a precautionary measure, CISA issued an alert for U.S. Federal agencies to secure their networks against these attacks.
In an unconventional move, Barracuda provided impacted customers with replacement devices at no cost instead of simply re-imaging the existing devices with new firmware.
This decision came after Barracuda warned that all compromised ESG appliances must be replaced immediately. With its products and services being used by over 200,000 organizations globally, including high-profile entities like Samsung, Delta Airlines, Mitsubishi, and Kraft Heinz, the ongoing efforts by Barracuda to address the login issues and secure its systems are of utmost importance.
