Barracuda patch bypassed by novel malware from China-linked threat group

Barracuda email security gateways were targeted by a cyber espionage campaign from a China-linked group, UNC4841, that sidestepped remediation efforts. The group released malware to maintain a presence inside high-priority organisations. No successful exploits have been found since Barracuda released a patch in May. However, Mandiant has warned some high-value targets could remain at risk since the malware was designed to persist, despite remediation.