Saturday, November 16, 2024
HomeBackdoorCybercrime as a Service - Hackers Selling Ransomware, RDP logins and Credit...

Cybercrime as a Service – Hackers Selling Ransomware, RDP logins and Credit Card Details on the Underground Markets

Published on

The underground markets flooded with a number of hacking tools that can be used to perform various malicious activities in the form of Cybercrime as a Service.

All these tools and services are offered at various pricing range, there are here are a number of dark web markets available such as Berlusconi Market, Empire Market, Wall Street Market, DreamPoint.

An analysis by Eset estimates the cost of products on the dark web markets and their prices.

- Advertisement - SIEM as a Service

RaaS

A ransomware-as-as-service is a service allows attackers to host their service in dark web which allows anyone to buy and use the services with their own modifications.

Eset spotted a wide range of ransomware packages for sale on the dark web, the criminals offering Updates, technical support, access to C&C servers.

Also Read: Hackers Offering DDoS-for-Hire Service Powered by Bushido Botnet in Dark Web Markets

RDP Logins

RDP logins sold on the dark web markets giving access to various RDP servers around the globe and the price varies between US$8-15 per server based on country and operating system.

“After buying such access, a cybercriminal might then use it to run ransomware or perhaps to install more discreet malware, such as banking Trojans or spyware.”

Servers for DDoS attacks

Cybercriminals put botnets on sale for launching DDoS attacks or for sending spam emails. the price varies depends on the service and how long you are to use the botnet.

The price ranging from 1 to 24 hours, an example indicates for three hours it costs US$60.

PayPal and credit card accounts

Credit card and Paypal details are for sale in various dark web stores and the charges about 10% of the total credit available in the stolen account.

Some cybercriminals also show what are the tools that they have used in conducting the phishing activity.

So, we can see that cybercriminals, hidden by tools that give them a certain degree of anonymity, have put together a profitable criminal industry, which includes everything from advertising and marketing to customer service, updates, and user manuals.  ESET Said.

You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep your self-updated.

Also Read: Cybercrime-as-a-Service – DDoS Attack Services Available in Dark Web Markets for $10 per Hour

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Critical TP-Link DHCP Vulnerability Let Attackers Execute Arbitrary Code Remotely

A critical security flaw has been uncovered in certain TP-Link routers, potentially allowing malicious...

Chinese SilkSpecter Hackers Attacking Black Friday Shoppers

SilkSpecter, a Chinese financially motivated threat actor, launched a sophisticated phishing campaign targeting e-commerce...

Cybercriminals Launch SEO Poisoning Attack to Lure Shoppers to Fake Online Stores

The research revealed how threat actors exploit SEO poisoning to redirect unsuspecting users to...

Black Basta Ransomware Leveraging Social Engineering For Malware Deployment

Black Basta, a prominent ransomware group, has rapidly gained notoriety since its emergence in...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

Critical TP-Link DHCP Vulnerability Let Attackers Execute Arbitrary Code Remotely

A critical security flaw has been uncovered in certain TP-Link routers, potentially allowing malicious...

Chinese SilkSpecter Hackers Attacking Black Friday Shoppers

SilkSpecter, a Chinese financially motivated threat actor, launched a sophisticated phishing campaign targeting e-commerce...

Cybercriminals Launch SEO Poisoning Attack to Lure Shoppers to Fake Online Stores

The research revealed how threat actors exploit SEO poisoning to redirect unsuspecting users to...