A significant cybersecurity concern has emerged with reports alleging that access to 70-100 corporate entities in Dubai, UAE, is being sold for an asking price of $3000. This alleged compromise stems from access gained through an MSP (Managed Service Provider) Bomgar platform, a widely used remote access solution. The advertisement claims to have compromised approximately 200 machines, 90% of which are servers, belonging to companies with revenues reportedly ranging from 20 to 40 million, indicating a potential breach of numerous mid-to-large-sized enterprises.
The alleged access includes both user-visible screen sharing and covert command line/file manager capabilities, suggesting a deep level of control. This access has reportedly been active for about a month. The persistent nature of this alleged access underscores the critical need for companies, especially those relying on MSPs and remote access tools like Bomgar, to bolster their cybersecurity defenses, including rigorous review of configurations and robust multi-factor authentication.
