id2958405routerdnshijacking1100601798orig
Security

An online market that offered cheap hacked servers returns

A website that offered access to hacked servers for as little as $6 is back online.

The market, called xDedic, went down last month on June 15 right after security firm Kaspersky Lab publicly exposed it. Access to more than 70,000 compromised servers from governments, businesses and universities had been sold through the site, in the two years it was in operation.

Kaspersky Lab, however, reported its finding to law enforcement agencies and said that “several major” internet service providers helped shut the site down.  

But after a brief hiatus, the makers of xDedic have been quick to revive the marketplace, security firm Digital Shadows said on Tuesday.

On June 24, an anonymous user named xDedic was spotted sharing the site’s new address on a Russian hacking forum, according to Digital Shadows.

The new xDedic site was found to be identical to the original one, although none of the previous user accounts were carried over. The domain was also shared on a French language criminal website located on the dark web.

It’s still unknown how many users the revived xDedic site currently has, but the previous site attracted 30,000 users a month, Digital Shadows said.

Once more hackers become aware of the site, it may only be a matter of time before it becomes popular again, the security firm added. The new xDedic site has opened user registration to all, but at the cost of paying $50.

On Tuesday, Kaspersky Lab said it’s also become aware of xDedic’s return and is monitoring the situation. The company is sharing all its findings with the relevant law enforcement agencies.

Kaspersky Lab has called the site a “hacker’s dream.” With cheap access to so many compromised servers, a buyer could use them to send out spam, steal data, or launch other cyber attacks.

Some evidence suggests that the xDedic site had actually sold access to as many as 170,000 servers, with the bulk of them located in the U.S. Kaspersky Lab has been alerting victims who were found to be affected.

IDG Insider

PREVIOUS ARTICLE

« Google hires team from online content sharing service Kifi

NEXT ARTICLE

Hacked 3D printers could commit industrial sabotage »
author_image
IDG Connect

IDG Connect tackles the tech stories that matter to you

  • Mail

Recommended for You

How to (really) evaluate a developer's skillset

Adrian Bridgwater’s deconstruction & analysis of enterprise software

Unicorns are running free in the UK but Brexit poses a tough challenge

Trevor Clawson on the outlook for UK Tech startups

Cloudistics aims to trump Nutanix with 'superconvergence' play

Martin Veitch's inside track on today’s tech trends

Poll

Is your organization fully GDPR compliant?