RedPacket SecurityJul 16, 2024

CRYSTALRAY Cyber-Attacks Grow Tenfold Using OSS Tools - https://www.redpacketsecurity.com/crystalray-cyber-attacks-grow-tenfold-using-oss-tools/

#threatintel #crystalray #ssh-snake #cyber_threat

CRYSTALRAY Cyber-Attacks Grow Tenfold Using OSS Tools - RedPacket Security

The Sysdig Threat Research Team (TRT) has revealed significant developments in the activities of the SSH-Snake threat actor. 

RedPacket Security
Anonymous 🐈️🐾☕🍵🏴🇵🇸 Jul 15, 2024

⚠️ #CRYSTALRAY threat actor has ramped up operations, infecting over 1,500 victims using open-source tools like SSH-Snake.

https://thehackernews.com/2024/07/crystalray-hackers-infect-over-1500.html

Experts warn that the attackers are leveraging legitimate tools, making detection challenging. #infosec

CRYSTALRAY Hackers Infect Over 1,500 Victims Using Network Mapping Tool

CRYSTALRAY hackers infect 1,500+ victims using SSH-Snake and other tools, exploiting vulnerabilities for credential theft and cryptocurrency mining

The Hacker News
ottotoJul 12, 2024

#CRYSTALRAY ハッカーが #SSH-Snake #ツール を使用して 1,500 の侵入システムに拡大 」: BLEEPINGCOMPUTER

「SSH-snake は、侵害されたサーバー上の #SSH #秘密キー を盗み、それを使用して他のサーバーに横方向に移動しながら、侵害されたシステムに追加のペイロードをドロップするオープンソース ワームです。」

https://www.bleepingcomputer.com/news/security/crystalray-hacker-expands-to-1-500-breached-systems-using-ssh-snake-tool/

#prattohome #BLEEPINGCOMPUTER

CRYSTALRAY hacker expands to 1,500 breached systems using SSH-Snake tool

A new threat actor known as CRYSTALRAY has significantly broadened its targeting scope with new tactics and exploits, now counting over 1,500 victims whose credentials were stolen and cryptominers deployed.

BleepingComputer
securityaffairsJul 11, 2024
#CrystalRay operations have scaled 10x to over 1,500 victims
https://securityaffairs.com/165607/cyber-crime/crystalray-operations-scaled-10x.html
#securityaffairs #hacking
CrystalRay operations have scaled 10x to over 1,500 victims

A threat actor known as CrystalRay targeted 1,500 victims since February using tools like SSH-Snake and various open-source utilities.

Security Affairs
The Threat CodexJul 11, 2024
CRYSTALRAY: Inside the Operations of a Rising Threat Actor Exploiting OSS Tools
#CRYSTALRAY #SSH_Snake #Nuclei #CVE_2022_44877
https://sysdig.com/blog/crystalray-rising-threat-actor-exploiting-oss-tools/
CRYSTALRAY: Inside the Operations of a Rising Threat Actor Exploiting OSS Tools

The Sysdig Threat Research Team found that the SSH Snake threat actor expanded operations greatly, justifying a new name: CRYSTALRAY.

Sysdig
John LeonardJul 11, 2024

New threat group CRYSTALRAY seen using variety of off-the-shelf tools to steal credentials

Observed using several open-source penetration testing tools to exfiltrate and sell credentials, install cryptominers and maintain a presence on the victim's networks via backdoors.

https://www.computing.co.uk/news/4334515/threat-group-crystalray-seen-variety-shelf-tools-steal-credentials

#technews #cryptomining #crystalray #sysdig #opensource #infosec

New threat group CRYSTALRAY seen using variety of off-the-shelf tools to steal credentials

The Sysdig Threat Research Team (TRT) has released a report on a new threat actor dubbed "CRYSTALRAY", which has been observed using several open-source penetration testing tools to exfiltrate and sell credentials, install cryptominers and maintain a presence on the victim's networks via backdoors.