Feb 10, 2025, 04:30 PM
XE Group, a hacker crew active since 2010, is now exploiting critical flaws like CVE-2024-57968 and CVE-2025-25181 to deploy web shells and maintain long-term access to systems. They’ve shifted focus from credit card skimming to attacking supply chains, particularly in manufacturing and distribution. These guys are getting smarter, using zero-day vulnerabilities for persistent control.
Meanwhile, CISA has flagged several active vulnerabilities, like those in 7-Zip and Sophos XG Firewalls, which are being exploited by Russian and Chinese hacker groups. These flaws could lead to malware infections, espionage, and even sabotage. If systems aren’t patched, they’re sitting ducks for these targeted attacks.
https://thehackernews.com/2025/02/xe-hac...-zero.html
Meanwhile, CISA has flagged several active vulnerabilities, like those in 7-Zip and Sophos XG Firewalls, which are being exploited by Russian and Chinese hacker groups. These flaws could lead to malware infections, espionage, and even sabotage. If systems aren’t patched, they’re sitting ducks for these targeted attacks.
https://thehackernews.com/2025/02/xe-hac...-zero.html
