An online black market known as xDedic has a list of over 70.000 servers that have been compromised, according to Kaspersky Lab.
Servers are located in 173 countries and are owned by businesses, universities and even government agencies. Most server administrators have no idea that their systems have been compromised.
On the xDedic black market, the hackers they market access to these servers for $6.
The hackers appear to have breached the servers using (relatively) simple methods, testing known vulnerabilities points και αναζητώντας αδύναμους κωδικούς πρόσβασης. Μόλις παραβιάσουν τον διακομιστή, οι hackers δημιουργούν μια λίστα από το λογισμικό που υπάρχει εγκατεστημένο, καταγράφουν το ιστορικό περιήγησης και άλλες λεπτομέρειες για να διευκολύνουν τους online αγοραστές.
After the purchase, hackers can use the servers to send spam, steal data, and generally do other illegal acts by avoiding capture if someone detects the source of the attack.
According to Kaspersky:
"It is one's dream hacker, simplifying access to victims is cheaper and faster, and opens up new opportunities for cybercriminals.”
Kaspersky says that although missing missing key data, it is believed that the underground market has been created by Russians. It was created two years ago and has over 400 sellers since May.