📢 Unlock Exclusive Cyber Threat Intelligence
Powered by DarkWebInformer.com
Get foundational access to breach intelligence — track breaches, leaks, and threats in real-time with unfiltered screenshots and expert summaries.
⚠ Disclaimer
This report includes actual screenshots and/or text that may include unredacted personally identifiable information (PII) gathered from publicly available sources. The sensitive information presented within this report is intended solely for cybersecurity awareness and threat intelligence purposes. Dark Web Informer explicitly condemns unauthorized access, distribution, or misuse of the personal data displayed or referenced here. Users must treat exposed data responsibly and ethically.
📌 Overview
Threat actor skart7 has posted a listing offering a zero-day remote code execution (RCE) exploit targeting Cisco Identity Services Engine (ISE) running on Linux. The exploit is advertised as pre-authentication, requiring no user interaction or credentials, and results in root access upon successful use. Compatibility with default configurations is claimed, suggesting wide applicability to vulnerable deployments.
📊 Key Details
| Attribute | Information |
|---|---|
| Date | 2025-06-04, 01:06:57 PM |
| Threat Actor | skart7 |
| Victim Country | Not specified |
| Industry | Not specified |
| Organization | Cisco |
| Victim Site | Not specified (targets Cisco ISE deployments) |
| Category | Malware (0day Exploit) |
| Severity | Low (targeted, technical, pre-auth RCE) |
| Network | openweb |
Subscriber-only content…
![IOC Alert: Lumma Stealer C2 Domain Identified – larpfxs[.]top](/content/images/size/w1304/format/webp/2025/08/23985762398576198764252-1.jpg)
%20Exploit){kind=link}