In the dark web, the access right to the airport system is sold for 1000 yen, and the military drone confidential document is sold for 20,000 yen

For the open world wide web, in the closed underground "dark web", everything is done, including illegal drug trafficking and murder contracting. Meanwhile, it is reported that the access right to the airport's security system and the confidential documents of the US Air Force's drones reconnaissance aircraft are being sold at surprisingly low prices.

Organizations Leave Backdoors Open to Cheap Remote Desktop Protocol Attacks | McAfee Blogs
https://securingtomorrow.mcafee.com/mcafee-labs/organizations-leave-backdoors-open-to-cheap-remote-desktop-protocol-attacks/

RDP (Remote Desktop Protocol), which allows users to access another computer through a GUI, is a useful and indispensable tool for system administrators, but it will become a serious security risk once exploited. Dark Web One thousand of established genre "RDP shop" in the black market, thousands of cracked RDP access rights are sold.

A security researcher at McAfee investigated multiple RDP shops in order to grasp the actual condition of dark web. Graph showing the scale of RDP shops. It is Danto's that it is Russian dark site "UAS Shop".

In the survey, "Only 10 dollars (about 1100 yen) system administrator authority" newly registered in UAS Shop on April 16, 2018 remained in the eye of McAfee's security researcher.

Without purchasing this access right, security researchers use shodan.io to narrow the system from sixty- five 5536 possible sites to three sites whose queries matched from IP addresses hidden partially Especially succeeded. After that, when examining the information on WHOIS for that IP address, it turned out that all three IP addresses were found to be from one major airport in the USA.

When two of them are accessed, login screen appears as follows. As a result of retrieving account information other than the Administrator (Internet administrator) on the net, it was found that one was connected to a building's automation service company and the other was connected to a surveillance camera and a security company that performs video analysis.

It seems that the account name displayed on the other login screen was presumed to be related to the passenger transportation system connecting the terminals.

It is surprising that the access rights of the airport management system are sold just around 1100 yen, but it is also known that more dangerous things are sold at a low price. According to the security company Corporate Recorded Future, confidential documents on the US Air Force's drone and others were sold for only 200 dollars (about 22,000 yen).

Military Reaper Drone Documents Leaked on the Dark Web
https://www.recordedfuture.com/reaper-drone-documents-leaked/

While Recorded Future 's Insikt Group technician is monitoring criminal activity on the dark web, he contacts the hacker "Sell highly confidential US military documents" on June 1, 2018 Especially succeeded. The document that the English-speaking hacker was trying to sell was related to the unmanned aerial vehicle " MQ - 9 Reaper " operated by the US Air Force.

And it seems that the price that a hacker presented to transfer the drone documents that seemed to have flowed out from the US military was a surprise that the price was between 150 dollars and 200 dollars (about 17,000 yen to 22,000 yen) .

Inskt Group engineer said the hacker did a hacking attack by vulnerability of Netgear's router. The hacker seems to have decided on the target to hack by the method of "search engine in Shodan extensively on the net and find router using port 21". A hacker who broke into the computer of the Drone maintenance department staff in Nevada state that he steals the drone maintenance document, rosters list of air Force pilots, textbooks and the like. After that, this hacker seems to have revealed that it got the manual such as the maintenance manual of tank " M1 Abrams ", military training, explosives handling etc.