loader gif

Turla APT Found Exploiting LightNeuron Backdoor Targeting Microsoft Exchange Email Servers

Turla APT Found Exploiting LightNeuron Backdoor Targeting Microsoft Exchange Email Servers (Threat Actors)

The backdoor, named LightNeuron, was specifically designed for Microsoft Exchange email servers and works as a mail transfer agent (MTA) --an approach that no other backdoor has ever taken. Because of the deep level the backdoor works, LightNeuron allows hackers to have full control over everything that passes through an infected email server, having the ability to intercept, redirect, or edit the content of incoming or outgoing emails. Once a Microsoft Exchange server is infected and modified with the LightNeuron backdoor, hackers never connect to it directly. Per ESET, LightNeuron is capable of reading and modifying any email going through the Exchange server, composing and sending new emails, and blocking a user from receiving certain emails.

loader gif