Hacked corporate servers selling for as little as $6 a pop

Reminder: Check your security settings on your server now before it’s too late.

Researchers from Kaspersky Labs recently discovered that access to thousands of compromised servers is being sold online for as little as $6. This could be for the purposes of sending out spam or marketing emails or launching Denial of Service attacks.

However, there could be much more to worry about than that. The researchers learned the 70,000 servers that were hacked worldwide were Remote Desktop Protocol servers, which are used to connect to computers on a local network.

And since they connect to other systems, there could be a bounty of useful information or data that hackers could also access for a relatively low cost. And in addition to selling access to the servers, the hackers are also selling software buyers can use to determine what’s on these servers and best ways to compromise them.

Already breached

The important thing to remember is that the hackers here are selling servers that are already compromised – and may have been for quite some time.

The likely culprit in this instance was brute-force attacks. These involve hitting servers with several attempts until something sticks. And if it’s been a while since you’ve checked your security settings – or are still using default settings – you could be in for a rude awakening.


Make Smarter Tech Decisions

Get the latest IT news, trends, and insights - delivered weekly.

Privacy Policy