Explore the latest news and trends  

Sign up for our weekly security newsletter

Be the first to receive important updates on security


Compromised Servers Sold on Underground Marketplace xDedic

One underground marketplace named xDedic where information about 70,600-and-more hijacked servers is being sold, have the servers on private as well as government networks in as many as 173 countries, like China, Singapore, Australia and Malaysia, among the rest.

Anyone wanting the information can buy one server accompanied with software with which distributed denial-of-service assaults can be launched, spam campaigns orchestrated, alternatively point-of-sale devices exploited. Ibtimes.co.uk posted this, June 15, 2016.

According to Asia-Pacific director Vitaly Kamluk of global research and analysis group of Kaspersky Labs, the above illegal market becomes prominent because of a sizeable list it offers, thus putting xDedic amidst the largest worldwide online-markets selling hijacked servers today.

Answering an interview by ZDNet, Kamluk stated whilst xDedic seemingly started operation in 2014, it was in 2015 that the marketplace's activities started rising. Working from Singapore, Kamluk represented the xDedic probing worldwide team.

The marketplace, in May 2016, catalogued precisely 70,624 hacked servers having Remote Desktop Protocol that 416 separate sellers were selling, although it apparently functioned as just one platform where it was possible to buy and sell data, without any alliance with the sellers.

Thus, acting as mediator, xDedic brings hijacked servers' traders and purchasers on the same platform. According to Raiu, the market's proprietors charge up-front fee of 5% on the cash deposited into a trading A/C.

Kaspersky discovered that the server-PCs ran remote desktop programs that network admins profusely used for giving technical help to operators of Microsoft Windows. The cost of using servers having network connections of high capacity was $15 at most.

Additionally according to Kaspersky, sirr, xLeon or Narko the sellers at xDedic possibly created SCCLIENT a malware. Placed on Nos. 5, 4 and 3 respectively, these sellers made to the top sellers' list of xDedic for 2016 May.

The security company reports its researchers sink-holed 5 command-and-control servers out of the 8 that SCCLIENT malware utilized, while identified 3,600-and-more contaminated hosts during the foremost 12-hrs alone.

Moreover, Kaspersky elaborates it jointly with an ISP of Europe gathered data regarding xDedic's activities that has been forwarded to authorities of law enforcement.

ยป SPAMfighter News - 6/21/2016

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page