Storm-2755
· Published 10/04/2026 12:07 · Modified 10/04/2026 12:07
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 10/04/2026 12:07
- Modified
- 10/04/2026 12:07
- Updated at
- 10/04/2026 12:07
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 18 attack patterns (mitre), 2 indicators, 1 vulnerabilities (cve)
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
AlienVault Confidence 100 1 CVE 18 MITREs 2 IOCs 2 Observables 1 APT
Attack patterns (MITRE) (18)
-
T1069 usesPermission Groups Discovery MITRE
-
T1185 usesBrowser Session Hijacking MITRE
-
T1556 usesModify Authentication Process MITRE
-
T1136.003 usesCloud Account MITRE
-
T1069.003 usesCloud Groups MITRE
-
T1114 usesEmail Collection MITRE
-
T1566.002 usesSpearphishing Link MITRE
-
T1098 usesAccount Manipulation MITRE
-
T1078.004 usesCloud Accounts MITRE
-
T1087.004 usesCloud Account MITRE
-
T1110 usesBrute Force MITRE
-
T1078 usesValid Accounts MITRE
Indicators (2)
-
http://bluegraintours.comindicatesstix 100/100 Revoked· Valid until 09/05/2026 · Source: AlienVault
Vulnerabilities (CVE) (1)
CVE-2025-27152
targets
5.3
Medium
axios is a promise based HTTP client for the browser and node.js. The issue occurs when passing absolute URLs rather than protocol-relative …
- Attack vector
- NETWORK
- Published
- 07/03/2025
- Modified
- 10/04/2026