Sunday, 19 June 2016

Hackers Dream

A thriving marketplace that sells access to more than 70,000 previously compromised Remote Desktop Protocol (RDP) servers have been uncovered. How it began is left for those who wish to go into investigations to uncover. So for a marginal amount of around $6, members of xDedic forum can access all the data of the server and can use this platform for further malicious attacks. India ranks 4th in hacked servers with 3,488 compromised servers listed on xDedic as of May 2016.
The server access allows the attackers to undertake a number of criminal activities as the hacked servers come preloaded with software that allows attackers to carry out denial-of-service attacks on other networks, launch spam campaigns, illicitly manufacture bitcoin currency, or compromise online or retail payment systems.

It’s every hacker’s dream to simplify access to the victims, making it cheaper and faster, and opening new opportunities for cybercriminals as well as advanced threat actors. These developers do not sell anything themselves. The price to access a high capacity server can be upto $15.
The entire process goes in a certain pattern:
1.     Numerous servers host provide access to popular consumer websites and services and some have software installed for direct mail, financial accounting and Point-of-Sale (PoS) processing.

2.     Users can now install malware that harvests card data funnelled through the compromised servers.
With a $7 upgrade, cybercriminals can gain access to government-based servers, including systems in interior and foreign ministries, commerce departments and local councils. The market administration that is believed to b Russian speaking operate by taking 5% upfront fee on all money entered for trading accounts on the website.
According to Kaspersky, targets include a US aerospace firm, banks in the United States, Philippines, Kazakhstan, Jordan, Ghana, Cyprus, South Korea and Saudi Arabia, chemical firms in Singapore and Thailand and oil companies in China and the United Arab Emirates.
Kaspersky has notified national computer emergency response teams in several countries.

No comments:

Post a Comment