Thursday, May 8, 2025
HomeComputer SecurityHackers Offering Less than $150 to Hack Corporate Email Accounts -...

Hackers Offering Less than $150 to Hack Corporate Email Accounts – 12.5 Million Email Archive Files are Exposed

Published on

SIEM as a Service

Follow Us on Google News

Cybercriminals offering BEC-as-a-service to compromise corporate email accounts to buyers for as low as $150 for the targets organizations accounting and finance departments which are the potential risk to face impacts.

The hacking forum is mainly used by cybercriminals to advertise their offer and compromised credentials are frequently shared across the various underground dark web forums.

FBI says Business Email Compromise (BEC) and Email Account Compromise (EAC) have caused $12 billion in losses since October 2013.

- Advertisement - Google News

Another scenario, Hackers could access Nearly 12.5 million email archive files are exposed from misconfigured an FTP, SMB, S3 buckets, and NAS drives from publicly available sources instead of compromised email accounts to access sensitive data.

According to Digital Shadows, 33,568 email addresses of finance departments exposed through third party compromises. Eighty-three percent (27,992) of these emails had passwords associated with them.

Targeting Corporate Email Accounts

Cybercriminals mainly targeting business emails that contain valuable data such as contract scans, purchase orders, and payroll information.

It helps more in order to perform targeted attacks against accounting departments and senior employee that leads to mimics as a legitimate company employee and transfer the confidential data.

This method relies solely on social engineering, is often highly targeted and involves a significant level of reconnaissance to be effective

Corporate Email Accounts

How Hackers Gain Access to Corporate Email Accounts

Apart from the traditional compromising method such as targeted phishing campaigns, information-stealing malware, and keyloggers, cybercriminals using other methods to gain access to the targeted business emails.

1. Paying for access

Threat actors selling the company credentials in the various underground forum as a service where anyone can buy the credentials based on the type of mail service and the price will be around $150.

2.Re-using Credentials

According to Digital Shadow, Re-using same credentials common for employees to reuse passwords across multiple accounts. With many email and password combinations of finance departments email accounts already compromised, cybercriminals can get lucky.

In this case, discovered emails address in total 33,568 finance department
email addresses exposed in third-party breaches. Eighty-three percent (27,992) of these emails had passwords associated.

3.Misconfigured Archives

A recent researcher from digital shadows reveals that 12.5 Million Email Archives Exposed Across Online misconfigured File Stores where they discovered tens of thousands of invoice (27,000), purchase orders (7,000), and payments (21,000). In some instances, these were incredibly sensitive.

Business Email Compromise is becoming increasingly profitable for threats actors, who are conducting highly targeted campaigns. Unfortunately, we’re making it easy for adversaries to gain access to the precious information that sits within email inboxes. Researchers said.

Related Read

Key Elements and Important Steps to General Data Protection Regulation (GDPR)

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Top Ransomware Groups Target Financial Sector, 406 Incidents Revealed

Flashpoint analysts have reported that between April 2024 and April 2025, the financial sector...

Agenda Ransomware Group Enhances Tactics with SmokeLoader and NETXLOADER

The Agenda ransomware group, also known as Qilin, has been reported to intensify its...

SpyCloud Analysis Reveals 94% of Fortune 50 Companies Have Employee Data Exposed in Phishing Attacks

SpyCloud, the leading identity threat protection company, today released an analysis of nearly 6...

PoC Tool Released to Detect Servers Affected by Critical Apache Parquet Vulnerability

F5 Labs has released a new proof-of-concept (PoC) tool designed to help organizations detect...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Top Ransomware Groups Target Financial Sector, 406 Incidents Revealed

Flashpoint analysts have reported that between April 2024 and April 2025, the financial sector...

Agenda Ransomware Group Enhances Tactics with SmokeLoader and NETXLOADER

The Agenda ransomware group, also known as Qilin, has been reported to intensify its...

PoC Tool Released to Detect Servers Affected by Critical Apache Parquet Vulnerability

F5 Labs has released a new proof-of-concept (PoC) tool designed to help organizations detect...