‼️🇺🇸 A threat actor claims to be selling unauthorized administrator access to a U.S.-based X-Ca...

Summary

A threat actor is advertising unauthorized administrator access to an active U.S.-based X-Cart e-commerce platform on the dark web for $500. The compromised store processes live orders and has integrated payment methods, creating immediate risk for customer data and financial fraud. The sale indicates either a credential compromise, application vulnerability, or insider threat against the X-Cart deployment.

Indicators of Compromise

• malware — X-Cart unauthorized admin access

Entities