• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer

My TechDecisions

  • COVID-19 Update
  • Best of Tech Decisions
  • Topics
    • Video
    • Audio
    • Mobility
    • Unified Communications
    • IT Infrastructure
    • Network Security
    • Physical Security
    • Facility
    • Compliance
  • RFP Resources
  • Downloads
  • Podcasts
  • Subscribe
  • Project of the Week
  • Latest News
  • About Us
    SEARCH
Network Security, News

Russian Military Hackers Have Exploited an Email Software

NSA announces that a group of Russian hackers called the Sandworm team have breached a vulnerability in the email software Exim Mail Transfer Agent.

May 29, 2020 TechDecisions Staff Leave a Comment

Russian hackers email

A group of hackers affiliated with the Russian government has exploited flaws in an email software, according to the National Security Agency.

Their recent advisory said the group, called “Sandworm team,” is a part of Russia’s military intelligence agency that exploited a vulnerability in Exim Mail Transfer Agent  since last August.

More from a recent NBC report:

“The Russian actors … have used this exploit to add privileged users, disable network security settings, execute additional scripts for further network exploitation; pretty much any attacker’s dream access – as long as that network is using an unpatched version of Exim MTA,” the advisory said.

The agency advised users to immediately update the software and warned that any outdated versions would likely remain vulnerable to attack.

“When the patch was released last year, Exim urged its users to update to the latest version. NSA adds its encouragement to immediately patch to mitigate against this still current threat,” it said.

The NSA’s Cybersecurity Directorate, which was restructured and newly launched last October, has been charged with disseminating more unclassified threat information more quickly, so that private sector entities can take steps to protect themselves from cyber attacks.

The directorate announced in January that a flaw in Windows 10 was disclosed to Microsoft and no harmful cyber activities were carried out.

The NSA has launched a new Twitter account, @NSACyber, where news of the Exim vulnerability was recently announced.

Additional resources to protect against cyber threats: 

  • U.S. Cybersecurity Officials Warn of Attacks on Hastily Deployed Office 365 Solutions
  • The Worst Cyber Attacks of 2019: Biggest Breaches & Expensive Consequences
  • The Biggest Targets of Cyber Attacks and How to Prepare For Them

 

Tagged With: Hacking

Related Content:

  • Microsoft Microsoft Issues Fixes For 108 Vulnerabilities, Including Four…
  • School Networks Distance Learning How To Safely Reintroduce Devices Onto School Networks
  • AT&T Coordinated Emergency Response Solution Chosen By Florida…
  • Microsoft Microsoft Acquires Healthcare AI, Voice Recognition Company

Free downloadable guide you may like:

  • These Are THE Key Issues For CIOs in 2021

    In this new research survey from The Hackett Group, it was found that IT priorities are geared up for an aggressive and accelerated transformation agenda. The IT department is poised to become a strategic partner with their business and guide stakeholders through a year of growth. This is the year of experimentation and adaption as […]

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Get the FREE Tech Decisions eNewsletter

Sign up Today!

Latest Downloads

Tackling the Virtual Culture Dilemma

COVID-19 has turned much of our lives upside down. At over one year into the pandemic, many of us are still working from home, which has been the b...

These Are THE Key Issues For CIOs in 2021

In this new research survey from The Hackett Group, it was found that IT priorities are geared up for an aggressive and accelerated transformation ...

These Are The 2021 Trends in Control Rooms And Operation Centers

Join Shelley Johnson, Principal Engineer at The MITRE Corporation, Shane Vega, National Business Development Manager at AVI-SPL, and Dan Griffin, V...

View All Downloads

Would you like your latest project featured on TechDecisions as Project of the Week?

Apply Today!
Sharp Microsoft Collaboration HQ Logo

Learn More About the
Windows Collaboration Display

More from Our Sister Publications

Get the latest news about AV integrators and Security installers from our sister publications:

Commercial IntegratorSecurity Sales

Footer

TechDecisions

  • Home
  • Welcome to TechDecisions
  • Subscribe to the Newsletter
  • Contact Us
  • Media Solutions & Advertising
  • Comment Guidelines
  • RSS Feeds
  • Terms of Use
  • Privacy Policy
  • Twitter
  • Facebook
  • Linkedin

Free Technology Guides

FREE Downloadable resources from TechDecisions provide timely insight into the issues that IT, A/V, and Security end-users, managers, and decision makers are facing in commercial, corporate, education, institutional, and other vertical markets

View all Guides
TD Project of the Week

Get your latest project featured on TechDecisions Project of the Week. Submit your work once and it will be eligible for all upcoming weeks.

Enter Today!

© 2021 Emerald X, LLC. All rights reserved.