A threat group associated with Russia has been connected to a cyber surveillance initiative focused on webmail servers like Roundcube, Horde, MDaemon, and Zimbra through cross-site scripting (XSS) weaknesses, including a previously unknown vulnerability in MDaemon, as per recent discoveries by ESET.
This operation, which began in 2023, has been designated as Operation RoundPress by the Slovak cybersecurity firm. It has