Hackers exploited a leaked version of Shellter Elite, a penetration testing tool, to deliver infostealer malware over several months. The incident highlights the risks of software leaks and the importance of strict licensing controls. #ShellterElite #Infostealer #PentestingTools
Keypoints
- Shellter Project confirmed misuse of its Elite product following a customer leak.
- The leaked software was exploited by threat actors to deliver infostealer malware.
- Elastic Security Labs identified multiple threat actors abusing version 11.0 of Shellter Elite.
- Shellter responded with an update to exclude the leaked version and improve security.
- The vendor criticized Elasticβs handling of the information, advocating for better collaboration.