NSA Warns of Ongoing Russian Hacking Campaign Against U.S. Systems
“This is a vulnerability that is being actively exploited, that’s why we’re bringing this notification out,” said Doug Cress, chief of the cybersecurity collaboration center and directorate at NSA. “We really want… the broader cybersecurity community to take this seriously.”
The notice is part of a series of public reports by the spy agency, which is responsible for both collecting foreign intelligence and protecting Defense Department systems at home, to share actionable cyber defense information.
Cress declined to discuss which business sectors had been most affected, how many organizations were compromised using the Russian technique, or whether the cyber espionage operation targeted a specific geographic region.
The NSA said the hacking activity was tied directly to a specific unit within Russia’s Main Intelligence Directorate, also known as the GRU, named the Main Center for Special Technologies. The cybersecurity research community refers to this same hacking group as “Sandworm,” and has previously connected it to disruptive cyberattacks against Ukrainian electric production facilities.
Secretary of State Mike Pompeo also called out the same GRU unit in February for conducting a cyberattack against the country of Georgia.
A security alert published by the NSA on Thursday explains how hackers with GRU, Russia’s military intelligence, are leveraging a software vulnerability in Exim, a mail transfer agent common on Unix-based operating systems, such as Linux. The vulnerability was patched last year, but some users have not updated their systems to close the security gap.
“Being able to gain root access to a bridge point into a network gives you so much ability and capability to read email, to navigate across and maneuver through the network,” said Cress, “so it’s more about the danger we’re trying to help people understand.”
- Chubb CEO Greenberg: Some Financial Lines Underwriting Practices ‘Simply Dumb’
- Apollo Accused in Lawsuit of Illegal Human Life Wagering Scheme
- Florida’s Home Insurance Industry May Be Worse Than Anyone Realizes
- Growing Progressive Set to Hire 10,000 for Claims, IT, Other Roles
- CoreLogic Report Probes Evolving Severe Convective Storm Risk Landscape
- Millions of Recalled Hyundai and Kia Vehicles, With Dangerous Defect, Remain on Road
- California Chiropractor Sentenced to 54 Years for $150M Workers’ Comp Scheme
- Poll: Consumers OK with AI in P/C Insurance, but Not So Much for Claims and Underwriting