XE Group Exploits VeraCore and Telerik UI Vulnerabilities
/ 1 min read
🔗 XE Group Exploits Zero-Day Vulnerabilities in VeraCore and Telerik UI. A cybercrime group known as XE Group has been linked to the exploitation of multiple security flaws in software products, including Progress Telerik UI and Advantive VeraCore, to establish persistent remote access through reverse and web shells. This marks a significant shift in their operations from credit card skimming to targeted information theft, particularly in supply chains within manufacturing and distribution. The vulnerabilities, including CVE-2024-57968 and CVE-2025-25181, have been actively exploited, with the group demonstrating increased sophistication by utilizing zero-day vulnerabilities. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added five new flaws to its Known Exploited Vulnerabilities catalog, emphasizing the need for timely patching to mitigate risks.
