Last Updated on 09/12/2021 by Nidhi Khandelwal
The ‘XE Gang,’ a relatively unknown group of Vietnamese hackers, has been tied to eight years of commercial hacking and credit card skimming.
Threat actors are suspected of stealing thousands of credit cards per day, primarily from restaurants, non-profit organizations, art galleries, and travel websites.
The actors hack externally-facing services using publicly accessible exploits, most notably Telerik UI weaknesses, to install password and payment information stealing malware.
The group’s operations were first detailed in a 2020 Malwarebytes report, but Volexity provided a more in-depth study of recent compromises ascribed to them yesterday.
More information becomes available.
Volexity was able to trace the XE Group’s infrastructure over the past three years and publish all technical information and IOCs on GitHub.
The long-term success of these attacks is determined by how effectively they can remain undetected on a website by security software.