Clearly the existence of a website that sells over 70,000 servers of hacked governments and companies

ByFlorian F. (Flowtography)

An underground website that sells over 70,000 hacked servers on the website "Securelist", a security expert on anti-virus software "Kaspersky" that publishes research results and calls attentionXDedic"A survey article on the issue has been released. The buyer can easily access the information of the user stored in the server, and it is known that the server can be purchased from the minimum of 6 dollars (about 630 yen).

XDedic - the shady world of hacked servers for sale - Securelist
https://securelist.com/blog/research/75027/xdedic-the-shady-world-of-hacked-servers-for-sale/

Kaspersky, in collaboration with a European internet service provider, investigated the actual condition of the underground website "xDedic". In the survey, we succeeded in gathering data on how xDedic is managed.


Sales of xDedic are government and enterprise web servers and databases, both of which are set at inexpensive price. The following is an actual purchase screen, the web server of "Target" of a major supermarket chain is sold for only $ 7 (about 730 yen). Criminals can only access these confidential corporate data without having to hack by themselves making a danger by simply purchasing these "goods". It is said that xDedic promotes the threat of cyber criminals and criminal organizations and that Kaspersky is a site that realized "hacker's dream".


With xDedic as of May 2016, 416 distributors were able to purchase 76,247 servers and databases covering 173 countries. As the number of servers and databases that can be purchased as of March was approximately 55,000, it shows that the underground market is growing steadily.

The following graph shows the number of servers sold by country, and it shows that servers such as Brazil, China, Russia, India, Spain, Italy etc. are on sale.


Although xDedic where many hacked servers and databases are illegally sold, it is said that xDedic development team itself has not sold anything just because it is only creating a market that risks the government and companies Thing. On the other hand, xDedic offers live technical support and tools to upload hacked servers to xDedic, act actively to promote crime.

It also knows that xDedic provides a tool to gather information on the software installed on the server. By doing this, a malicious user can purchase a server by hitting "server on which POS software is installed", and by placing malware that specializes in POS on the purchased server, information such as credit card number You can collect it. Kaspersky has reported the problem to an appropriate legal institution and is cooperating with the ongoing investigation.