Sunday, February 9, 2025
HomeComputer SecurityHacking Group Fxmsp Claims they Hacked 3 Major US Antivirus Companies

Hacking Group Fxmsp Claims they Hacked 3 Major US Antivirus Companies

Published on

SIEM as a Service

Follow Us on Google News

Fxmsp is a collective of Russian- and English-speaking hackers, they are primarily targeting on highly protected networks to exfiltrate sensitive details from corporate’s and government entities.

The hacking group operating since 2017 and they know for targeting corporate and government networks worldwide.

According to the new report from Advanced Intelligence LLC, the hacker group has stolen “source code related to the companies’ software development and offering to sell it, and network access, for over $300,000.”

From 2017 and 2018, the group promotes various data breaches on the dark web markets, they recently developed “credential-stealing botnet capable of infecting high-profile targets to exfiltrate sensitive usernames and passwords,” and their main goal is to focus on secured systems.

Starting this April 24, 2019, the hacking group claims they have hacked three antivirus companies and extracted sensitive source code from antivirus software, AI, and security plugins from the companies.

They also commented that they have analyzed the different companies’ software and assessed their efficiency, reads the AdvIntel report.

Based on the screenshot offered by Fxmsp, they purported to contain 30 terabytes of data, which extracted from the antivirus companies networks and not disclosing the company names.

“The folders seem to contain information about the company’s development documentation, artificial intelligence model, web security software, and antivirus software base code.”

the group offered privately to sell the source code and network access to all three companies for “over $300,000,” Yelisey Boguslavskiy said to Ars Technica.

The actor claimed that antivirus breach research had been their main project over the last six months, Advanced Intelligence researchers said, “Fxmsp is a credible hacking collective that has a history of selling verifiable corporate breaches returning them profit close to USD 1,000,000.”

You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep your self-updated.

Also Read:

Microsoft Exchange Server Zero-day Flaw Exploit Provide Highest Admin Privilege to Hackers

Microsoft Releases Security Advisory for Privilege Escalation Vulnerability With Exchange Server

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

UK Pressures Apple to Create Global Backdoor To Spy on Encrypted iCloud Access

United Kingdom has reportedly ordered Apple to create a backdoor allowing access to all...

Autonomous LLMs Reshaping Pen Testing: Real-World AD Breaches and the Future of Cybersecurity

Large Language Models (LLMs) are transforming penetration testing (pen testing), leveraging their advanced reasoning...

Securing GAI-Driven Semantic Communications: A Novel Defense Against Backdoor Attacks

Semantic communication systems, powered by Generative AI (GAI), are transforming the way information is...

Cybercriminals Target IIS Servers to Spread BadIIS Malware

A recent wave of cyberattacks has revealed the exploitation of Microsoft Internet Information Services...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

More like this

UK Pressures Apple to Create Global Backdoor To Spy on Encrypted iCloud Access

United Kingdom has reportedly ordered Apple to create a backdoor allowing access to all...

Autonomous LLMs Reshaping Pen Testing: Real-World AD Breaches and the Future of Cybersecurity

Large Language Models (LLMs) are transforming penetration testing (pen testing), leveraging their advanced reasoning...

Securing GAI-Driven Semantic Communications: A Novel Defense Against Backdoor Attacks

Semantic communication systems, powered by Generative AI (GAI), are transforming the way information is...