Threat actors are allegedly offering unauthorized VPN and SOCKS access to various companies across multiple countries and industries. The access claims range from domain user to domain admin privileges, with significant potential impacts on each affected organization. Below are the details of the alleged sales:
Domain User Access:
- Spain
- Revenue: 17.2 million euros
- Industry: Business Services
- Price: $800
- United Kingdom
- Revenue: 5.7 million pounds
- Industry: Freight & Logistics Services
- Price: $800
- India
- Revenue: 65 million rupees
- Industry: Manufacturing
- Price: $1000
- Indonesia
- Revenue: 265 million rupiah
- Industry: Building Materials
- Price: $1500
- United Kingdom
- Revenue: 6.5 million pounds
- Industry: Manufacturing
- Price: $800
Domain Admin Access:
- Canada
- Revenue: Less than 5 million dollars
- Industry: Business Services
- Price: $650
- Thailand
- Revenue: Not specified
- Industry: Seafood Supply (one of the biggest Seafood Exporter Groups)
- Price: $1750
- India
- Revenue: More than 1 billion rupees
- Industry: Business Services
- Price: $5000
- Puerto Rico, United States
- Revenue: 17 million dollars
- Industry: Accounting Services
- Price: $3000
- India
- Revenue: 84.9 million rupees
- Industry: Telecom Regulatory Authority of India
- Price: $2500
- Japan
- Revenue: Less than 5 million yen
- Industry: Retail
- Price: $650
Other threat actor is allegedly selling unauthorized SOCKS access to a major Indian corporation in the Oil, Gas, and Energy sector. The company reportedly has a revenue exceeding 50 billion dollars. The access includes domain admin privileges, with control over more than 10,000 devices within the company’s network. The asking price for this access is $1 million.
These alleged sales highlight significant cybersecurity vulnerabilities across various sectors and regions. The availability of such access on the dark web underscores the critical need for enhanced security measures and constant vigilance to protect sensitive information and infrastructure.