UNC1151 exploiting Roundcube to steal user credentials in a spearphishing campaign

June 5, 2025

UNC1151 exploiting Roundcube to steal user credentials in a spearphishing campaign

CERT Polska has observed a spear phishing campaign targeting Polish entities this week. The threat actor attempted to exploit the CVE-2024-42009 vulnerability, which allows JavaScript code to be execu …

Published Date:
Jun 05, 2025 (3 hours, 39 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-49113

CVE-2024-42009

Source: Read More

Previous ArticleCVE-2025-0691 – Devolutions Server Access Control Bypass

Next Article How to create issues and pull requests in record time on GitHub

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

ChatGPT now has an agent mode

Scrum Alliance and Kanban University partner to offer new course that teaches both methodologies

Is ChatGPT down? You’re not alone. Here’s what OpenAI is saying

I found a tablet that could replace my iPad and Kindle – and it’s worth every penny

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

Execute Ping Commands and Get Back Structured Data in PHP

Execute Ping Commands and Get Back Structured Data in PHP

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

Microsoft confirms active cyberattacks on SharePoint servers

How to Manually Check & Install Windows 11 Updates (Best Guide)

UNC1151 exploiting Roundcube to steal user credentials in a spearphishing campaign

UNC1151 exploiting Roundcube to steal user credentials in a spearphishing campaign

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

3,500 Websites Hijacked to Secretly Mine Crypto Using Stealth JavaScript and WebSocket Tactics

CVE-2025-5297 – SourceCodester Computer Store System Stack-Based Buffer Overflow Vulnerability

CVE-2025-47816 – GNU PSPP XML Processing Out-of-Bounds Read Vulnerability

Microsoft 365 Copilot Just Got Smarter with Memory and Instruction Controls

Microsoft waarschuwt voor actief aangevallen RCE-lek in WebDAV

Accessibility Analyzer

CVE-2025-6019: time to upgrade Linux | Kaspersky official blog

vmstat – reports virtual memory statistics

Laravel APP_KEY Vulnerability Allows Remote Code Execution – Hundreds of Apps Affected

UNC1151 exploiting Roundcube to steal user credentials in a spearphishing campaign

UNC1151 exploiting Roundcube to steal user credentials in a spearphishing campaign

Related Posts