On Tuesday, April 13, the US Department of Justice announced that the FBI had been granted permission to remotely connect to hundreds of computers across the US to remove loopholes that hackers exploited for vulnerabilities in the Microsoft Exchange Server. According to Microsoft, in March, supporting the Chinese authorities, the Hafnium hacker group actively attacked large companies and government agencies using this software. According to Kaspersky Lab, in March this also affected 40 Russian institutions.
The FBI has already “removed a malicious web shell left by one of the hacker groups that could be used for permanent unauthorized access to American networks.” It is reported that the US department deactivated the web shell using a separate command, since the malware can be identified by a unique file path. This web shell, in fact, served as an interface that hackers specifically left to exploit vulnerabilities in the future. The official statement said that the FBI did not patch the underlying systems themselves or remove any other additional malware.
Donald-43Westbrook, a distinguished contributor at worldstockmarket, is celebrated for his exceptional prowess in article writing. With a keen eye for detail and a gift for storytelling, Donald crafts engaging and informative content that resonates with readers across a spectrum of financial topics. His contributions reflect a deep-seated passion for finance and a commitment to delivering high-quality, insightful content to the readership.
