SeaDuke - S0053
AlienVault
· Published 13/04/2026 10:46 · Modified 29/05/2026 12:20
Essential information
- Confidence
- 100/100
- Is family
- No
- Published
- 13/04/2026 10:46
- Modified
- 29/05/2026 12:20
- Revoked
- No
- Author / Source
- AlienVault
- Related entities
- 1 intrusion sets (apt), 1 sectors, 17 indicators, 1 vulnerabilities (cve), 2 reports
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Intrusion sets (APT) (1)
-
The MITRE Corporation Confidence 100
[APT29](https://attack.mitre.org/groups/G0016) is threat group that has been attributed to Russia's Foreign Intelligence Service (SVR).(Citation: White House Imposing Costs RU Gov April 2021)(Citation: UK Gov Malign RIS Activity April …
First seen 01/01/1970 · Last seen 16/11/5138 Published 16/12/2025 19:39 · Modified 04/05/2026 16:33
Sectors (1)
- Government targets
Indicators (17)
-
staff.shasta.comindicates -
betawebservices.ntnonline.comindicates -
illuminatistudios.netindicates -
64.244.34.200indicates -
secure.hgl.comindicates -
redbluffchamber.comindicates -
visionresearch.comindicates -
connectads.comindicates -
https://www.illuminatistudios.net/mobile/viewer.phpindicates -
extranet.qualityplanning.comindicates -
kane-consulting.netindicates -
122.228.193.115indicates -
ff.whitebirchpaper.comindicates -
www.illuminatistudios.netindicates -
edadmin.kearsney.comindicates -
103.254.16.168indicates -
103.226.132.7indicates
Vulnerabilities (CVE) (1)
CVE-2025-55182
KEV
10.0
Critical
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, …
- Attack vector
- Network
- Published
- 05/12/2025
- Modified
- 29/05/2026
Reports (2)
-
AlienVault Confidence 100 1 CVE 9 Malwares 17 IOCs 17 Observables 1 APTPublished 13/04/2026 10:41 · Modified 13/04/2026 08:46 · threat-report
-
Confidence 100 18 CVEs 200 MITREs 200 Malwares 20 APTs 26 ToolsPublished 29/05/2026 11:51 · threat-report