Satnam Narang
Commenting on the severe zero-day vulnerability affecting all editions of the Exim mail transfer agent (MTA) software, Satnam Narang, Sr. Staff Research Engineer at Tenable, said “Exim is a popular message transfer agent (MTA) that is preinstalled on some Unix distributions. It has been historically targeted by attackers in the past, most notably, by a Russian advanced persistent threat (APT) group known as Sandworm Team. Sandworm exploited a critical flaw in Exim in 2020. The discovery of these flaws is important and it is equally important that patches are rolling out. Unpatched vulnerabilities in external facing assets are one of the key vectors for initial access by APT groups and other cybercriminals including ransomware affiliates. Organisations that rely on Exim should apply the available patches as soon as possible.”