New FTP hacking toolkit spreads on black market
Securiity researchers discovered that new malicious code spread through the black market is making its way onto some of the largest corporate Web sites in the world. San Jose-based Finjan, a security company specializing in Web gateway solutions, announced today that it uncovered a database containing more than 8,700 harvested FTP account credentials, including usernames, passwords and server addresses, spread through a malicious toolkit, which cyber criminals use to harvest the information. The information was available for blackmarket trade, along with the NeoSploit version 2 crimeware toolkit, a malicious application specifically designed to abuse and trade stolen FTP account credentials from numerous legitimate companies. The malware is subsequently distributed to other criminals who use the malicious code on high traffic Web sites for their own financial gain.
The whole package, which includes the FTP server credentials as well as the Neosploit malicious toolkit, acts as Software as a Service for criminals because it supports multiple users, Finjan researchers say. Attackers use a sophisticated trading interface to classify the stolen accounts by the FTP server’s country of origin and the compromised site’s Google page ranking. This information enables attackers to determine cost of the compromised FTP credentials for resale to cybercriminals or to leverage themselves in an attack against the more prominent Web sites. Finjan researchers believe that the amount of money that criminals pay for the malware is minimal, likely in the neighborhood of $100. Attackers use the credentials to infiltrate corporate Web servers in order inject crimeware onto the legitimate servers of public companies, government agencies and financial institutions to steal critical information such as pass codes, bank account and social security numbers.
Source: CRN
where’s the torrent link ;P
man, any sense of security in the digital world is a mere illusion. We should all regress back to tee-pee living.
Crimeware?
hmmm, I was wondering if something was going on, this week alone I have had 3 ftp accounts hacked and phishing sites uploaded to them.
Where is the download link Neosploit really seems and interesting tool …
Rapid Share Link??
“Securiity” researchers - typing error.
@5
LOL..but now with you…how is FTP noobish? And what are the “elite” using thats sooo much better than FTP? O_o
security measures aren’t that hard to implement lol
I think he is thinking: BT FTW!!!
As my opinion - ftp is mkay, but… It looses it’s position between everyday users. Most of leechers prefer bt anyway
Oh, ^^ was ment to 9th
Lol, Crimeware…
i remember the good old days of ftp warez scene
@5 predb
so you think youre elite? the scene uses ftp as thats the safest way to go so i dont think you can get better than that. so stfu with you dum comments you dĩckwad
@15 Stewie
Your a newb I am an elite ha4×0r, I hacked through the Gibson, DOT, DOD, Whitehouse, Skynet, Homeland security, FBI, CIA, etc the whole nine, all you guys here are just script kiddies. I can even *gasp* hack your moms computer. FTP hacking is a walk in the park for me unlike you wanabee noobs.
“I am number one!”
-Hugo from Street Fighter Third Strike
#1 stunta
@16 Joey Numbers
Oh yes, we belive you, huge profet!
First off, if you really where a real elite ha4×0r you would shut up about it and not bragging like a stupid freakin’ moron. You would be caught faster then you would say “busted”.
I will h4xor your internets.
dear sirs, i believe some of you seem to be in desperate need of an irony detector adjustment here.
@Joey Numbers
I double dare you to h4ck me right now you uptight, little 10 year old n00b!
Wait, I made that.
@ Joey Numbers
You must be the biggest idiot in the world. You can’t even hack 127.0.0.1…..
I am rooting for the hackers to destroy these companies.
FTP FOR NOOBS!!! LOL
SOMEBODY BURN THAT LAME KID PLEASE
In all seriousness, if anyone IS updating their website or uploading content to a remote server using FTP, I DO suggest you switch over to a secure shell (google search SSH). FTP isn’t exactly the safest protocol, and most post-grad’s can “listen” to files being sent via FTP if you are sending confidential data. Please heed my warning, as this is just ONE of the FTP exploits.
Yeah, But what are the odds?
@Joey Numbers
haha u said u hacked skynet….lol isnt that from terminator????? lol
I love all the tools thinking that Joey Numbers is serious… Skynet is from Terminator and the Gibson is from Hackers!
–
KATE: P6 chip. Triple the speed of the Pentium.
DADE: Yeah. It’s not just the chip, it has a PCI bus. But you knew that.
KATE: Indeed. RISC architecture is gonna change everything.
Post a download link here pls