Access To Thousands Of Compromised Government Servers Selling For $6 On Black Market

An anonymous reader writes: Researchers have uncovered an underground market selling information of over 70,000 compromised servers. Russia-based Kaspersky Lab revealed that the online forum, named xDedic, seems to be operated by a Russian-speaking organisation and allows hackers to pay for undetectable access to a wide range of servers, including those owned by government, corporate and academic groups in more than 170 countries. Access to a compromised server can be bought for as little as $6. This kit comes with relevant tools to instruct on launching denial-of-service attacks and spam campaigns on the targeted network, as well as allowing criminals to illegally produce bitcoin and breach online systems, such as retail payment platforms.

it wuz haxx0rz!

So much for useful reporting. Par for the course, for Eugene 'internet passport' Kaspersky built his empire on FUD and scare words.

Re:it wuz haxx0rz!

The headline is very misleading. You cannot get access to "thousands of servers" for $6. It is $6 EACH. You can rent a server from AWS for less than that.

Re:it wuz haxx0rz!

[Joe_Dragon]

But that $6 gets you in to club fed.

Re:it wuz haxx0rz!

[WallyL]

Not to be confused with the other Club Fed, I presume.

Re:it wuz haxx0rz!

[lucm]

You cannot get access to "thousands of servers" for $6. It is $6 EACH.

Their business model sucks. They should have some kind of tiered pricing model, with volume discount and loyalty programs.

Produce Bitcoins?

[Yvan256]

This kit comes with relevant tools to instruct on launching denial-of-service attacks and spam campaigns on the targeted network, as well as allowing criminals to illegally produce bitcoin [...]

Last time I checked, which was months ago, it was nearly impossible to mine Bitcoins without specialized hardware. Are they hacking ASICs or what?

Re:Produce Bitcoins?

[Minupla]

It's nearly impossible to mine them profitably. E.g. you'd pay more in electricity then you gain. But if you have enough hosts and don't need to pay for the electricity you're using, or you have access to powerful servers that (again) you don't have to pay for, it changes the economics.

Min.

Re:Produce Bitcoins?

[Nos_Trebor]

There is nothing impossible about it. Its just that if you have to pay for the power and compute cycles its not worth it without ASICs. If you're stealing time/power on (many?) computers and contributing to a pool you'll make a very small fractions daily.

Re:Produce Bitcoins?

[houghi]

If you have enough machines running that you do not need to pay the electricity for, it becomes profitable.
So you use the network to spam and the processor to bitcoin. You have access to the machine, why would you NOT do it?

Re:Produce Bitcoins?

[JustAnotherOldGuy]

Last time I checked, which was months ago, it was nearly impossible to mine Bitcoins without specialized hardware. Are they hacking ASICs or what?

I'm guessing that perhaps the idea is assemble a botnet from the compromised machines in order to mine bitcoins night and day. Since the electricity and hardware cost you nothing it might be a viable (economical) way to make bitcoins. 70,000 servers might be enough to pop out a coin from time to time.

Re:Produce Bitcoins?

[ShanghaiBill]

it was nearly impossible to mine Bitcoins without specialized hardware.

It is not impossible, just inefficient. But if you are not paying the electricity bill, they why should you care about inefficiency?

Re:Produce Bitcoins?

If you mine a cpu-friendly altcoin and immediately trade each produced altcoin for bitcoin, then the combination of the two steps is a cpu-friendly way of producing bitcoin.

Re: Produce Bitcoins?

Sounds like my popping habits.

Re:Produce Bitcoins?

You are correct.

Max.

Re: Produce Bitcoins?

Congratulations! At the same time you were telling him his answer was incorrect you, damn near, plagiarized the hell out of it. I realize reading can be hard, but if you're having issues with reading something you can always read it more than once...for now it's still relatively free to inform yourself correctly.

Re: Produce Bitcoins?

Reminds me of a Seinfeld episode

TFA blocked

Webroot blocks TFA, saying that the page is hosting malicious content.

Research link

Why not link to the Kaspersky research at all? https://securelist.com/blog/re...

Act now, supplies are not limited!

[RumGunner]

This news forum is starting to sound like an advertisement for hacked services. Get it together, entire IT industry.

Re:Act now, supplies are not limited!

[Errol+backfiring]

I am afraid that government is not "industry". For example, the Dutch government had its national certificate compromised twice within 3 months. The first time was big news, the second only mentioned on IT news sites.

Re:Act now, supplies are not limited!

Well, to be fair after having their certificates compromised the first time there's no reason to believe that the second certificate would be protected to the degree that a reasonable person would trust it.

It's like the breach on Teamviewer; although this supposedly only effected service accounts and not the client applications, would a careful person trust the same organization that couldn't secure their servers to write a secure piece of software for general distribution? Sure, the next comparable solution could be just as insecure, but we already have a breach in trust with this one.

AWS VMs posing as Juicy Decoys

How soon until the Darknet has its Internet Bubble moment?

When a bad apple rents 5000 AWS VMs and "dresses" them all up to look like Banks, Gov and Prime Military or Industrial targets complete with millions of fake, non-existant citizens with Ultra easy to guess passwords?

Then by "using" or attempting to login they are "fingered" or identified, de-Torred or Exposed.. leaking their own machine access and credentials in the process.

Spearfishing can work [both] ways.. just say'n Darknet.. your days are numbered.. what's good for the Goose.. is Sauce for the Bear.

Re: AWS VMs posing as Juicy Decoys

I'm not sure you understand how all of this works.

disgruntled spook?

sounds like not everybody in the government can be trusted with your data after all.

Rant about crappy headlines

Access To Thousands Of Compromised Government Servers Selling For $6 On Black Market

TFA says "over 70,000 compromised servers" and doesn't give a figure for how many of those are government, so it's entirely possibly that saying "Thousands Of Compromised Government Servers" is factually inaccurate.

Access To ... Compromised Government Servers Selling For $6

TFA says "With an upgrade to $7 cybercriminals can gain access to government-based servers". So no, you can't access Govt. servers for $6.

Access To ... Servers Selling For $6

Each. You can't buy access to these servers for $6, you buy access for $6+ for each server. Reading that headline my first thought was "why would someone sell so much for so little?".

Whenever I see commenters moaning about how scientists are always changing their minds on what causes cancer etc. a few people are always quick to point out that it's not the scientists who are the problem, it's the crappy churnalists who misrepresent that information. In this case it's not even The Stacks fault, whoever wrote the headline squeezed three misrepresented/ambiguous items into the headline: that there are 70,000 Govt. servers which you can buy access to for $6. Can we please be a bit more careful and accurate about how we portray these things?

/rant

Re:Rant about crappy headlines

[campuscodi]

You must be new

ummm, free advice

[stackOVFL]

This kit comes with relevant tools to instruct on launching denial-of-service attacks and spam campaigns on the targeted network

Advise to would be hacker(s): If you need this provided for you don't even try it. You WILL be caught in short order and I HATE jury duty.

wrong

you can buy electricity in a bulk rate from the power company, and then make mining bitcoins very profitable.

please come back when you actually know something about this topic, thanks.