CRYSTALRAY is a threat actor. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does CRYSTALRAY exploit?

Specific CVE exploitation data for CRYSTALRAY is being tracked. Check the Strobes VI threat actor profile for updates.

CRYSTALRAY

Exploited CVEs

Overview

CRYSTALRAY is a threat actor known for leveraging open source tools like zmap and SSH-Snake to conduct widespread vulnerability scanning and exploitation. They target victims to collect and sell credentials, deploy cryptominers, and maintain persistence in compromised environments. CRYSTALRAY uses multiple backdoors to control access and spreads through victim networks using SSH-Snake. The actor also uses tools like Platypus for managing victims and extracting sensitive information from compromised systems.

Exploited Vulnerabilities

No exploited CVEs have been attributed to this threat actor yet.

Browse CVE Database