Company Update

Zimbra Zero-Day, Gov Cloud Loss, & ParkMobile Breach – 10/05/2025

Chris Armour
October 4, 2025
Zimbra Zero-Day, Gov Cloud Loss, & ParkMobile Breach – 10/05/2025

Today’s threat landscape is highlighted by the active exploitation of a Zimbra zero-day vulnerability using malicious calendar files. A catastrophic fire has also led to the complete loss of a South Korean government cloud system due to a lack of backups, serving as a stark reminder of disaster recovery’s importance. Additionally, we cover the minimal compensation offered to 22 million users in the ParkMobile data breach settlement and advancements in AI for vulnerability detection.

Top 3 Critical Security Alerts

  • Hackers exploited Zimbra flaw as zero-day using iCalendar files: A vulnerability in the Zimbra Collaboration Suite was actively exploited as a zero-day using malicious iCalendar (.ICS) files to compromise systems before a patch was available. Read more
  • Fire destroys S. Korean government’s cloud storage system, no backups available: A catastrophic incident in South Korea resulted in a fire destroying a government cloud storage system, leading to total data loss due to the lack of available backups. Read more
  • ParkMobile pays… $1 each for 2021 data breach that hit 22 million: Following a class-action lawsuit for its 2021 data breach, ParkMobile is compensating 22 million affected users with a manually claimed, expiring $1 in-app credit. Read more

Threat Intelligence

  • Hackers exploited Zimbra flaw as zero-day using iCalendar files: A vulnerability in the Zimbra Collaboration Suite was actively exploited as a zero-day using malicious iCalendar (.ICS) files to compromise systems before a patch was available. Read more

Security Breaches & Incidents

  • Fire destroys S. Korean government’s cloud storage system, no backups available: A catastrophic incident in South Korea resulted in a fire destroying a government cloud storage system, leading to total data loss due to the lack of available backups. Read more
  • ParkMobile pays… $1 each for 2021 data breach that hit 22 million: Following a class-action lawsuit for its 2021 data breach, ParkMobile is compensating 22 million affected users with a manually claimed, expiring $1 in-app credit. Read more

Emerging Security Technologies

  • Reasoning models like Claude Sonnet 4.5 are getting better at spotting security flaws: Anthropic reports that advanced AI reasoning models like Claude Sonnet 4.5 are demonstrating a growing potential for effectively identifying complex cybersecurity flaws. Read more
Distribute Intel
Chris Armour
Director of Software Engineering
Chris Armour
The Breaker & Builder.

Operating on the philosophy that 'you can't build a secure system if you don't know how to break it,' Chris leads our engineering division. A top 1% National Cyber League competitor, he hardens our digital infrastructure against the very exploits he has mastered.

AI security cloud security Cybersecurity Data Breach Incident Response threat intelligence Zero-Day Zimbra
Press & Media

Media Inquiries

For expert commentary, interview requests, or high-res assets regarding this announcement, initialize the terminal.

Initialize Terminal

// Recent Dispatches

Initiate
Deployment.

Whether you need a full adversarial facility audit or an executive resilience protocol for your leadership team.

Secure the Facility (Assessments)
Secure the Mind (Coaching/Speaking)