Summary: Researchers have uncovered that the Vietnamese cybercrime group XE Group has shifted its tactics to exploit zero-day vulnerabilities in the VeraCore enterprise software, previously targeting credit card-skimming. This investigation highlights their unauthorized access and deployment of malicious tools to exfiltrate data and compromise network security. The shift indicates a growing focus on supply chain attacks in the manufacturing and distribution sectors.
Affected: VeraCore Platform
Keypoints :
- XE Group exploited two zero-day vulnerabilities in VeraCore for unauthorized access and data theft.
- The group historically targeted credit card skimming but is now focusing on information theft and supply chain attacks.
- Existing security measures were bypassed, allowing the deployment of webshells and Remote Access Trojans (RATs).