Seqrite Labs has uncovered a highly targeted phishing campaign dubbed “Operation GhostMail”. The attack compromised the Ukrainian State Hydrology Agency by exploiting a Cross-Site Scripting (XSS) vulnerability in Zimbra Collaboration Suite (ZCS). Unlike typical attacks, this campaign relies entirely on the email body, using no malicious attachments, suspicious links, or macros. Attributed with medium confidence […] The post Russian APT Exploits Zimbra XSS In GhostMail Attacks On Ukrainian Government appeared first on Cyber Security News.