Security News > 2020 > May > NSA: Russian Agents Have Been Hacking Major Email Program
The U.S. National Security Agency says the same Russian military hacking group that interfered in the 2016 presidential election and unleashed a devastating malware attack the following year has been exploiting a major email server program since last August or earlier.
It took Williams about a minute of online probing on Thursday to find a potentially vulnerable government server in the U.K. He speculated that the NSA might have issued to advisory to publicize the IP addresses and a domain name used by the Russian military group, known as Sandworm, in its hacking campaign - in hopes of thwarting their use for other means.
The NSA did not say who the Russian military hackers have targeted.
Senior U.S. intelligence officials have warned in recent months that Kremlin agents are engaged in activities that could threaten the integrity of the November presidential election.
An NSA official reached by The Associated Press would only say that the agency is publicizing the vulnerability because, despite an October warning by British officials, it "Has continued to be exploited and needs to be patched." The hope, in now publicizing Sandworm's role, is to further motivate patching, said the official, who spoke on condition they not be further identified.