Suspected Vietnamese hacking operation XE Group, also known as XeThanh, which has been targeting healthcare organizations, government agencies, and construction firms since at least 2013, had one of its operators identified as Nguyen Huu Tai, according to The Hacker News.
Tai, also known as Joe Nguyen and Thanh Nguyen, has been noted by Menlo Security to have the greatest link with the threat operation following a review of information from various online sources.
XE Group was also reported by researchers to have been leveraging exploits to compromise internet-exposed servers in an effort to exfiltrate passwords and credit cards.
"As far back as 2014, the threat actor was seen creating AutoIT scripts that automatically generated emails and a rudimentary credit card validator for stolen credit cards," said Menlo Security researchers.
Such findings come after the operation was revealed by the Cybersecurity and Infrastructure Security Agency to have leveraged a critical vulnerability in Progress Telerik devices, tracked as CVE-2019-18935, to facilitate network compromise.
In this interview, Raghu discusses the specific challenges in securing the cloud and how to overcome them. He shares how to make your life easier by making security a team sport, how to gain the visibility you need across clouds, data centers, and endpoints, and how to get a return on your cloud security investments.
This segment is sponsored by I...
Cybercrime operation Gold Melody, also known as UNC961 and Prophet Spider, has been discovered by SecureWorks Counter Threat Unit researchers to be an initial access broker peddling compromised network access for further attacks, according to The Hacker News.