SlowMist Yuxian: DEXX was stolen because it used a vulnerability in the ZenTao platform that was exploited and led to external intrusion

PA一线｜2025-03-26 11:58

PANews reported on March 26 that Yu Xian, the founder of SlowMist, published an article on the X platform to review the DEXX theft incident. He said that although the investigation report has not been made public, he can responsibly say that it was indeed because a vulnerability in the ZenTao platform used by DEXX was exploited, which led to external intrusion, and then the production network-related server and database permissions were taken down. All trace analysis restored this attack path.

In other words, DEXX is also a victim, but it is responsible for poor safety management. SlowMist actually knew the truth a long time ago, but why didn't it say it publicly? On the one hand, it was because of the mood at the time that no one believed it, and almost everyone thought it was a thief who stole the money from the company. On the other hand, it needed to follow the law enforcement rhythm (DEXX called the police and filed a case immediately). For the purpose of prudence, the investigation also started with internal suspects, and only when the law enforcement was gradually eliminated did it start to target the outside.

Original Link

Author ：PA一线
This article reflects the opinions of PANews's columnist and does not represent the stance of PANews. PANews does not assume legal responsibility. The article and opinions do not constitute investment advice.
Image Source ： PA一线 If there is any infringement, please contact the author to remove it.