XE Group – Exposed: 8 Years of Hacking & Card Skimming for Profit

Volexity documents XE Group, a likely Vietnamese criminal actor active since at least 2020 that compromises IIS/websites (often via known exploits) to deploy obfuscated JavaScript credit-card skimmers (and auxiliary .NET/AutoIT/C++ malware) to exfiltrate payment and form data; the report maps the group’s infrastructure, malware samples, persona links to carding forums/GitHub, lists indicators and provides detection/mitigation guidance.