Rooted Plesk, OpenSSH boxes sold on forum

By

Credentials for sale.

Researchers have discovered an online store where criminals sell access to hacked servers

Rooted Plesk, OpenSSH boxes sold on forum

Server admin credentials were being trafficked on the SSH–Zone site and could be used to distribute malware or run botnet command-and-control servers.

The online shop sold admin information for Plesk and OpenSSH running on hacked Linux servers and amassed credentials using an automated cracking method, AlienVault researcher Alberto Ortega reported.

Screen shot: Darren Pauli

Researchers believe that Russian attackers were behind the operation due to the written language in the site.

A report by 41st Parameter said stolen credentials were often “packaged in a standardised format” and later used to further extract information from victims through spear phishing campaigns.

This article originally appeared at scmagazineus.com

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:

Most Read Articles

CBA using facial recognition logins to verify disputed payments

CBA using facial recognition logins to verify disputed payments

Researchers demo AI-crippling GPUHammer attack

Researchers demo AI-crippling GPUHammer attack

Qantas obtains court order to prevent third-party access to stolen data

Qantas obtains court order to prevent third-party access to stolen data

Google Gemini for Workspace vulnerable to prompt injection attacks

Google Gemini for Workspace vulnerable to prompt injection attacks

Log In

  |  Forgot your password?