RoundCube DOO Company Cyber Security Posture
roundcube.rsRoundCube is a top-tier web development company that delivers innovative and scalable web and mobile applications tailored to the unique needs of diverse clients. Utilizing cutting-edge technologies and a powerful, collaborative team, we create efficient solutions that drive success. Based in Belgrade, RoundCube leverages the power of cloud technology to provide secure, reliable, and high-performance applications that help our clients achieve their goals and stay ahead of the competition. Partner with RoundCube and experience the difference that innovation and expertise can make.
RoundCube DOO Company Details
roundcubedoo
9 employees
142.0
511
Software Development
roundcube.rs
Scan still pending
ROU_2458874
In-progress
RoundCube DOO Risk Score (AI oriented)Between 900 and 1000
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
RoundCube DOO Global Score.png)
RoundCube DOO Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 900 and 1000 |
RoundCube DOO Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| Roundcube | Vulnerability | 85 | 4 | 6/2025 | ROU300060925 | Link | |
Rankiteo Explanation : Attack with significant impact with customers data leaksDescription: Over 84,000 Roundcube webmail installations are vulnerable to CVE-2025-49113, a critical remote code execution (RCE) flaw with a public exploit. The flaw, which impacts Roundcube versions 1.1.0 through 1.6.10, was patched on June 1, 2025. Hackers have reverse-engineered the patch to develop a working exploit, sold on underground forums. The vulnerability stems from unsanitized $_GET['_from'] input, enabling PHP object deserialization and session corruption. Although exploitation requires authentication, attackers claim valid credentials can be obtained via CSRF, log scraping, or brute-forcing. The high risk of exploitation and potential for data theft make the exposure of these instances a significant cybersecurity risk. | |||||||
RoundCube DOO Company Subsidiaries
RoundCube is a top-tier web development company that delivers innovative and scalable web and mobile applications tailored to the unique needs of diverse clients. Utilizing cutting-edge technologies and a powerful, collaborative team, we create efficient solutions that drive success. Based in Belgrade, RoundCube leverages the power of cloud technology to provide secure, reliable, and high-performance applications that help our clients achieve their goals and stay ahead of the competition. Partner with RoundCube and experience the difference that innovation and expertise can make.
Access Data Using Our API
Get company history
Rapid.png)
RoundCube DOO Cyber Security News
The overlooked changes that two Trump executive orders could bring to cybersecurity
Good, bad, puzzling โ a March order and June order could have bigger ripples than realized when the president signed them. By Tim Starks.
Wall Street is changing its tune on downbeat cybersecurity stock Palo Alto Networks
The analysts agree with us, calling the punishing sell-off that abated last week overdone.
Seattle-based cybersecurity firm lays off over 100 workers
F5, a top tech employer in Seattle, is letting go of more than 100 employees as the summer of tech layoffs continues.
Federal judge advances Saudi activistโs lawsuit against Emirati cybersecurity firm
Al-Hathloul claims the firm violated the Computer Fraud and Abuse Act, and she accuses three former U.S. intelligence officers and formerย ...
AI is reshaping hacking. No one agrees how fast.
Underestimate how quickly adversarial hackers are advancing in generative AI, and your company could be patient zero.
USF building new college for AI, cybersecurity with help from major benefactor
USF and a major university benefactor are planning to build a new college for artificial intelligence and cybersecurity at the Tampa campus.
Will SDV tech improve or worsen vehicle cybersecurity?
Public cybersecurity blunders by automakers and poor messaging have clouded consumers' perception of SDVs' functional safety.
Citrix NetScaler flaws lead to critical infrastructure breaches
Hackers have breached critical infrastructure organizations in the Netherlands using a vulnerability in Citrix's NetScaler products,ย ...
Latest CISA cyber guidance urges organizations to inventory OT assets
The guidance focuses on operational technology, which refers to hardware and software that monitor and control physical processes in industrialย ...
RoundCube DOO Similar Companies
More than one billion people around the world use Instagram, and weโre proud to be bringing them closer to the people and things they love. Instagram inspires people to see the world differently, discover new interests, and express themselves. Since launching in 2010, our community has grown at a r
Grab
Grab is Southeast Asiaโs leading superapp, offering a suite of services consisting of deliveries, mobility, financial services, enterprise and others. Grabbers come from all over the world, and we are united by a common mission: to drive Southeast Asia forward by creating economic empowerment for ev
PedidosYa
Weโre ย the delivery market leader in Latin America. Our platform connects over 77.000 restaurants, supermarkets, pharmacies and stores with millions of users. Nowadays we operate in more than 500 cities in Latinamerica. And we are now over 3.400 employees. PedidosYa is available for iOS, Android and
A problem isn't truly solved until it's solved for all. Googlers build products that help create opportunities for everyone, whether down the street or across the globe. Bring your insight, imagination and a healthy disregard for the impossible. Bring everything that makes you unique. Together, we c
Daraz
Daraz is the leading e-commerce marketplace across South Asia (excluding India). Our business covers four key areas โ e-commerce, logistics, payment infrastructure and financial services โ providing our sellers and customers with an end-to-end commerce solution. With access to over 500 million custo
Cadence
Cadence is a pivotal leader in electronics and system design, building upon more than 30 years of computational software expertise. The company applies its underlying Intelligent System Design strategy to deliver software, hardware and IP that turn design concepts into reality. Cadence customers are
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
RoundCube DOO CyberSecurity History Information
How many cyber incidents has RoundCube DOO faced?
Total Incidents: According to Rankiteo, RoundCube DOO has faced 1 incident in the past.
What types of cybersecurity incidents have occurred at RoundCube DOO?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.
How does RoundCube DOO detect and respond to cybersecurity incidents?
Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with update to version 1.6.11 and 1.5.10, restrict access to webmail, turn off file uploads, add csrf protection, block risky php functions, monitor for exploit indicators.
Incident Details
Can you provide details on each incident?
Incident : Remote Code Execution (RCE)
Title: Critical RCE Flaw in Roundcube Webmail (CVE-2025-49113)
Description: Over 84,000 Roundcube webmail installations are vulnerable to CVE-2025-49113, a critical remote code execution (RCE) flaw with a public exploit.
Date Detected: 2025-06-01
Date Publicly Disclosed: 2025-06-01
Type: Remote Code Execution (RCE)
Attack Vector: Unsanitized $_GET['_from'] input enabling PHP object deserialization and session corruption
Vulnerability Exploited: CVE-2025-49113
Threat Actor: Unknown hackers
Motivation: Data theft
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
How does the company identify the attack vectors used in incidents?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Unsanitized $_GET['_from'] input.
Impact of the Incidents
What was the impact of each incident?
Incident : Remote Code Execution (RCE) ROU300060925
Systems Affected: Roundcube webmail installations
Which entities were affected by each incident?
Incident : Remote Code Execution (RCE) ROU300060925
Entity Type: Software
Industry: Technology
Location: United States, India, Germany, France, Canada, United Kingdom
Response to the Incidents
What measures were taken in response to each incident?
Incident : Remote Code Execution (RCE) ROU300060925
Containment Measures: Update to version 1.6.11 and 1.5.10, Restrict access to webmail, Turn off file uploads, Add CSRF protection, Block risky PHP functions, Monitor for exploit indicators
Data Breach Information
How does the company handle incidents involving personally identifiable information (PII)?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by update to version 1.6.11 and 1.5.10, restrict access to webmail, turn off file uploads, add csrf protection, block risky php functions and monitor for exploit indicators.
Lessons Learned and Recommendations
What recommendations were made to prevent future incidents?
Incident : Remote Code Execution (RCE) ROU300060925
Recommendations: Update to version 1.6.11 and 1.5.10, Restrict access to webmail, Turn off file uploads, Add CSRF protection, Block risky PHP functions, Monitor for exploit indicators
What recommendations has the company implemented to improve cybersecurity?
Implemented Recommendations: The company has implemented the following recommendations to improve cybersecurity: Update to version 1.6.11 and 1.5.10, Restrict access to webmail, Turn off file uploads, Add CSRF protection, Block risky PHP functions, Monitor for exploit indicators.
References
Where can I find more information about each incident?
Incident : Remote Code Execution (RCE) ROU300060925
Source: The Shadowserver Foundation
Date Accessed: 2025-06-08
Where can stakeholders find additional resources on cybersecurity best practices?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: The Shadowserver FoundationDate Accessed: 2025-06-08.
Initial Access Broker
How did the initial access broker gain entry for each incident?
Incident : Remote Code Execution (RCE) ROU300060925
Entry Point: Unsanitized $_GET['_from'] input
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident?
Incident : Remote Code Execution (RCE) ROU300060925
Root Causes: Unsanitized $_GET['_from'] input enabling PHP object deserialization and session corruption
Additional Questions
General Information
Who was the attacking group in the last incident?
Last Attacking Group: The attacking group in the last incident was an Unknown hackers.
Incident Details
What was the most recent incident detected?
Most Recent Incident Detected: The most recent incident detected was on 2025-06-01.
What was the most recent incident publicly disclosed?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2025-06-01.
Impact of the Incidents
What was the most significant system affected in an incident?
Most Significant System Affected: The most significant system affected in an incident was Roundcube webmail installations.
Response to the Incidents
What containment measures were taken in the most recent incident?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Update to version 1.6.11 and 1.5.10, Restrict access to webmail, Turn off file uploads, Add CSRF protection, Block risky PHP functions and Monitor for exploit indicators.
Lessons Learned and Recommendations
What was the most significant recommendation implemented to improve cybersecurity?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Update to version 1.6.11 and 1.5.10, Restrict access to webmail, Turn off file uploads, Add CSRF protection, Block risky PHP functions, Monitor for exploit indicators.
References
What is the most recent source of information about an incident?
Most Recent Source: The most recent source of information about an incident is The Shadowserver Foundation.
Initial Access Broker
What was the most recent entry point used by an initial access broker?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an Unsanitized $_GET['_from'] input.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
