Interview with Pryx Part 2: Diving Deeper into Server-Side Stealers & Other Interesting Chit-chats (Video Included)

This report presents an interview with a criminal operator known as Pryx who describes gaining initial access via brute-forced VPN credentials, CVE exploitation, and phishing, escalating privileges to obtain root, deploying backdoors and ransomware or selling privileged access, and demonstrating a novel server-side stealer that establishes Tor onion services on victims to enable remote data harvesting and make detection harder; the actor claims successful ransoms against large organizations and shared a video proof-of-concept.