Summary: Cybersecurity researchers have revealed a significant evolution in the tactics of XE Group, a cybercriminal organization that has shifted from credit card skimming to targeted information theft using zero-day vulnerabilities. In 2024, they exploited critical vulnerabilities in VeraCore software to infiltrate organizations, demonstrating advanced operational methods. This shift emphasizes the need for organizations to enhance their cybersecurity measures against increasingly sophisticated threats.
Affected: Organizations using VeraCore software
Keypoints :
- XE Group has transitioned from credit card skimming to targeted information theft.
- In 2024, they exploited two zero-day vulnerabilities in VeraCore software, allowing unauthorized access and execution of commands.
- The group has shown persistence by reactivating previously deployed webshells, indicating their ability to remain undetected.
- Organizations must continuously monitor their systems and implement robust security controls to counter evolving cyber threats.