Rooted Plesk, OpenSSH boxes sold on forum

By

Credentials for sale.

Researchers have discovered an online store where criminals sell access to hacked servers

Rooted Plesk, OpenSSH boxes sold on forum

Server admin credentials were being trafficked on the SSH–Zone site and could be used to distribute malware or run botnet command-and-control servers.

The online shop sold admin information for Plesk and OpenSSH running on hacked Linux servers and amassed credentials using an automated cracking method, AlienVault researcher Alberto Ortega reported.

Screen shot: Darren Pauli

Researchers believe that Russian attackers were behind the operation due to the written language in the site.

A report by 41st Parameter said stolen credentials were often “packaged in a standardised format” and later used to further extract information from victims through spear phishing campaigns.

This article originally appeared at scmagazineus.com

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:

Most Read Articles

Qantas facing 'significant' data theft after cyber attack

Qantas facing 'significant' data theft after cyber attack

Home Affairs officer accessed data on "friends and associates"

Home Affairs officer accessed data on "friends and associates"

International Criminal Court hit by cyber attack

International Criminal Court hit by cyber attack

Ex-student charged over Western Sydney University cyberattacks

Ex-student charged over Western Sydney University cyberattacks

Log In

  |  Forgot your password?