FlagThis

Cybercriminals are exploiting a cracked version of the Acunetix web application vulnerability scanner, rebranded as 'Araneida Scanner,' for malicious purposes. This cracked tool is being sold on cybercrime forums and through Telegram channels, making it affordable for criminals to conduct offensive reconnaissance on websites, scrape user data, and identify vulnerabilities for exploitation. Security researchers at Silent Push discovered the tool after a partner organization reported an aggressive scanning effort against their website, tracing the attack back to an address linked to the notorious hacking group FIN7.

The 'Araneida Scanner' is being offered as a cloud-based service, complete with a proxy offering that masks the source of the scans, allowing customers to operate anonymously. The tool is advertised on various cybercrime forums and boasts nearly 500 subscribers on its Telegram channel, which also provides instructions on using the tool for illegal activities. The operators of Araneida proudly brag about its effectiveness in cybercrime, claiming it has been used to take over more than 30,000 websites in six months, and to facilitate the theft of data used to purchase luxury items, such as a Porsche.

ImgSrc: www.silentpush.com

References:

• Over Security - Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm - 6d
• www.silentpush.com - Araneida Scanner: Silent Push Discovers Cracked Acunetix Web App & API Scanner - 6d

Classification:

• HashTags: Acunetix AraneidaScanner Cybercrime
• Company: Acunetix
• Target: Web Applications
• Product: Acunetix
• Feature: vulnerability scanning
• Type: Hack
• Severity: Major