The templates change, but the bait remains the same: a package in storage. The goal is to make the user enter sensitive data on a fake site to steal it and activate a subscription.
Hackers in Dark Web offer to hack corporate emails for $150
Digital Shadows: Companies world wide face a new threat from Dark Web. Malicious hackers offer to hack corporate emails for just $150
Companies world wide face a new threat from Dark Web: malicious hackers offer to hack corporate emails (Business Email Compromise, BEC) for just $150. It has been discovered by Digital Shadows cyber security experts. Somne of them promise to deliver access to the compromised emails within just a week. Others to take payment, only when they have proved to the buyer that the targeted accounts have been compromised. The researchers also uncovered a criminal campaign being orchestrated by a Russian-speaking threat actor that targets emails of finance departments across over 100 construction, higher education, and public health sectors. This cybercrime gang, is also offering commissions to partner up and conduct operations. So, cyber criminals who purchase these compromised emails could use them to launch their own phishing and social engineering aggressions. Then, companies could experience a peak of cyber attacks at all levels.
There is a risks of a big rise in cyber attacks against companies, moreover at the hands of wannabes who do not realize the damage they could cause unintentionally
Dark web marketplaces are continuosly evolving, with new products or exploits sold every day. At cybercrime level, usually the most trafficked are credential lists, tools and services like Ransomware-as-a-service (MAAS), Malware –as-a service (MAAS) and RAT-as-a-service (RAAT). Until now only few maliciuous hackers offered to hack targets for buyers. Especially for national interest purpouses. Furthermore, their “services” were not advertized on Dark Web. Usually it was used for first contacts, then developed somewhere else in messengers or private chats/channels. Now there is a change of pace in the cybercrime underground, that can’t be ignored. This is because it risks a big rise in cyber attacks against companies, moreover at the hands of wannabes who do not realize the damage they could cause unintentionally.