Your IT Consultant

Barracuda Recommends You Forklift Impacted ESG Appliances

June 8, 2023

Perhaps it’s a good time to move to the cloud and/or check out security products from other manufacturers. The Hacker News reported the severe action Barracuda recommends for Email Security Gateway (ESG) appliances. Even though Barracuda has patched the zero-day vulnerability impacting ESG devices, it is now recommending that the hardware be replaced even if it is patched. In other words, you’re screwed. As the post states, “The vulnerability concerns a case of remote code injection affecting versions 5.1.3.001 through 9.2.0.006 that stems from an incomplete validation of attachments contained within incoming emails. It was addressed on May 20 and May 21, 2023.”

Bottom line…it must be some pretty serious persistent malware if hardware replacement is required. Perhaps you should look at products from other manufacturers that have a better track record or move services to the cloud. No matter what, fast action is needed at this time.

Email:   Phone: 703.359.0700
Digital Forensics/Cybersecurity/Information Technology
https://www.linkedin.com/in/johnsimek
https://amazon.com/author/johnsimek
https://senseient.com