The National Security Advisory has issued a warning that cyber actors linked to the Russian military have been exploiting a critical vulnerability in Exim MTA software since at least August 2019.
This cyber actor is the same one that Area 1 observed interfering in prior U.S. elections.
Read Area 1’s exclusive Security Advisory for more details on:
Vulnerable Exim servers being run at foreign ministries, leading public policy think tanks, major research institutions, and in the Amazon GovCloud
Examples of U.S. candidates running for office who have been running vulnerable Exim servers
Our recommendations that election-sensitive U.S. organizations case use of Exim in their campaigns