Who is ShroudedSnooper?

ShroudedSnooper is a threat actor. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does ShroudedSnooper exploit?

Specific CVE exploitation data for ShroudedSnooper is being tracked. Check the Strobes VI threat actor profile for updates.

ShroudedSnooper

Exploited CVEs

Overview

In September 2023, Cisco Talos identified a new malware family that it calls ‘HTTPSnoop’ being deployed against telecommunications providers in the Middle East. They also discovered a sister implant to 'HTTPSnoop,’ that they are naming ‘PipeSnoop,’ which can accept arbitrary shellcode from a named pipe and execute it on the infected endpoint. Based on these findings, the researchers assess with high confidence that both implants belong to a new intrusion set that it named ‘ShroudedSnooper.’

Exploited Vulnerabilities

No exploited CVEs have been attributed to this threat actor yet.

Browse CVE Database