FBI Receives Permission To Remotely Connect To PC To Remove Exchange Server Vulnerabilities


On Tuesday, April 13, the US Department of Justice announced that the FBI had been granted permission to remotely connect to hundreds of computers across the US to remove loopholes that hackers exploited for vulnerabilities in the Microsoft Exchange Server. According to Microsoft, in March, supporting the Chinese authorities, the Hafnium hacker group actively attacked large companies and government agencies using this software. According to Kaspersky Lab, in March this also affected 40 Russian institutions.

The FBI has already “removed a malicious web shell left by one of the hacker groups that could be used for permanent unauthorized access to American networks.” It is reported that the US department deactivated the web shell using a separate command, since the malware can be identified by a unique file path. This web shell, in fact, served as an interface that hackers specifically left to exploit vulnerabilities in the future. The official statement said that the FBI did not patch the underlying systems themselves or remove any other additional malware.

You may also like