ResumeLootersResumeLooters

Also known as: ResumeLooters

Known aliases
1

Profile

Since the beginning of 2023, ResumeLooters have been able to compromise at least 65 websites. The group employs a variety of simple techniques, including SQL injection and XSS. The threat actor attempted to insert XSS scripts into all available forms, aiming to execute it on the administrators’ device to obtain admin credentials. While the group was able to execute the XSS script on some visitors’ devices with administrative access, allowing ResumeLooters to steal the HTML code of the pages the victims were visiting, Group-IB did not find any confirmation of admin credential thefts.

Aliases· 1

ResumeLooters

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
GambleForce
Actor
Hunt3r Kill3rs
Actor
RansomHouse
Actor
Boolka
Breach
Stealer Logs Posted to Telegram
Actor
HexagonalRodent
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.