An online black market known as xDedic has a list of over 70.000 servers that have been compromised, according to Kaspersky Lab.
Servers are located in 173 countries and are owned by businesses, universities and even government agencies. Most server administrators have no idea that their systems have been compromised.
In the xDedic black market, hackers crawl access to these servers for 6 dollars.
The hackers appear to have breached the servers using (relatively) simple methods, trying known ones vulnerabilities και αναζητώντας αδύναμους κωδικούς πρόσβασης. Μόλις παραβιάσουν τον διακομιστή, οι hackers δημιουργούν μια λίστα από το λογισμικό που υπάρχει εγκατεστημένο, καταγράφουν το ιστορικό tourand other details to facilitate online shoppers.
After the purchase, hackers can use the servers for the Mission spam, steal data and generally commit other illegal acts while avoiding arrest if someone identifies the source of the attack.
According to Kaspersky:
"Είναι το όνειρο ενός hacker, η απλοποίηση της πρόσβασης στα θύματα είναι φθηνότερη και ταχύτερη, και ανοίγει νέες δυνατότητες για τους εγκληματίες του κυβερνοχώρου."
Kaspersky says that although key elements are missing, the underground market is believed to have been created by Russians. Created before two years and has over 400 sellers as of May.