CyberArts cybersecurity team has detected a threat actor on the dark web, claiming to sell 0-Days where remote commands can be run within the file upload area in many e-commerce and public institutions.
They shared screenshots from their PoC in order to strengthen their claim as a cyber threat actor. It has been observed that his PoC is one of the public institutions. The “.gov” extension attracted attention in the PoC images.
Evidences:
