A threat actor, called ‘4c3’ selling access to a central bank. The threat actor did not disclose the name of the bank.
The ad posted today, in exploit.in website. The threat actor did not disclose the name of the bank but gave some information like the bank has Symantec as EDR and around 10k machines, mostly running Windows. The bank is using Flexcube database too.
The threat actor is claiming that she/he can give VPN access for the central bank and all passwords of domain dump.
The threat actor announced that she/he is not giving the name of the bank publicly and she/he can give it only via private chat.
exploit.in is a very popular Russian undergroun hacking forum.