San Francisco, May 29 (SocialNews.XYZ) The US National Security Agency has warned that a notorious Russian military hacking group is engaged in an email hacking campaign.
The group is part of General Staff Main Intelligence Directorate's (GRU) Main Center for Special Technologies (GTsST), NSA said on Thursday.
This is the same group which was linked to the leak of 2016 stolen Democratic emails and files in the rup up to the 2016 US presidential election.
The Russian military cyber group has been exploiting a vulnerability in Exim mail transfer agent (MTA) software since at least last August, NSA said.
Exim is a widely used mail transfer agent software for Unix-based systems -- which offer an alternative to Microsoft and Apple's operating systems -- and comes pre-installed in some Linux distributions as well.
The vulnerability being exploited, CVE-2019-10149, allows a remote attacker to execute commands and code of their choosing, NSA warned.
The Russian actors have used this exploit to add privileged users, disable network security settings, execute additional scripts for further network exploitation as long as that network is using an unpatched version of Exim mail transfer agent.
The NSA, however, did not reveal who became targets of the Russian hackers.
When the patch was released last year, Exim urged its users to update to the latest version, NSA said, adding that it encourages users to immediately patch to mitigate against this still current threat.
Source: IANS
About Gopi
Gopi Adusumilli is a Programmer. He is the editor of SocialNews.XYZ and President of AGK Fire Inc.
He enjoys designing websites, developing mobile applications and publishing news articles on current events from various authenticated news sources.
When it comes to writing he likes to write about current world politics and Indian Movies. His future plans include developing SocialNews.XYZ into a News website that has no bias or judgment towards any.
He can be reached at gopi@socialnews.xyz