<ul><li>XE Group, a Vietnam-linked hacking collective, has been identified as the perpetrator behind the exploitation of VeraCore zero-day vulnerabilities.</li><li>The group utilized VeraCore flaws (CVE-2024-57968 and CVE-2025-25181) to deploy reverse shells and web shells, gaining remote access.</li><li>SOC Prime Platform offers a set of Sigma rules to detect XE Group attacks and enhance threat detection and hunting capabilities.</li><li>XE Group's evolution in offensive operations demonstrates their sophistication, adaptability, and demand for proactive defense strategies.</li></ul>

XE Group Activity Detection: From Credit Card Skimming to Exploiting CVE-2024-57968 and CVE-2025-25181 VeraCore Zero-Day Vulnerabilities

Discover more