Due to the nature of the domain ( gov.ua ), the system is frequently targeted by hackers looking for official communication.
In February 2017, a spear‑phishing email was sent to admin@police.gov.ua . The message contained an HTML attachment named “ Zimbra_Webmail_Activation.html ,” which mimicked a legitimate Zimbra login page. The attackers used a compromised Malaysian government domain ( kelantan.gov.my ) to spoof the sender. If a user entered credentials, they would be sent to a proxy script hosted on a hacked Polish website ( apliflex.pl/blue‑zimbra.php ), allowing attackers to capture usernames and passwords. The attack did not rely on software exploits—it was pure social engineering, demonstrating that human psychology remains one of the weakest links in cybersecurity. mail.police.gov.ua zimbra
This usually occurs if the officer's device does not have the updated root security certificates issued by the government's central certificate authority. Due to the nature of the domain ( gov
Using proprietary cloud providers (especially non-Ukrainian ones) introduces legal and sovereignty concerns. With Zimbra hosted on Ukrainian government servers, the police retain full control over: The attackers used a compromised Malaysian government domain
is the official webmail portal used by the National Police of Ukraine to facilitate secure, internal communication and collaboration among its personnel . Powered by the Zimbra Collaboration Suite, this platform provides a secure environment for officers and administrative staff to manage emails, calendars, tasks, and documents efficiently.