Over 6,000 SmarterMail servers exposed to automated hijacking attacks Source: BleepingComputer www.bleepingcomputer.com/news/secu… Nonprofit security organization Shadowserver has identified more than 6,000 SmarterMail servers exposed online and likely vulnerable to active exploitation of a critical authentication bypass vulnerability. Cybersecurity firm watchTowr reported the flaw to SmarterTools on Jan. 8. A fix was released on Jan. 15, initially without an assigned vulnerability identifier. The issue was subsequently assigned CVE-2026-23760 and rated critical severity. The vulnerability allows unauthenticated attackers to hijack administrator accounts and achieve remote code execution on affected hosts, potentially resulting in full server compromise. According to an advisory added to the NIST National Vulnerability Database on Thursday: “SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability in the password reset API.”
Over 6,000 SmarterMail servers exposed to automated hijacking attacks
Edward Kiledjian
@ekiledjian