Cybercriminals are promoting the contents of stolen MySQL databases on the dark web at the discounted value of simply $550 per database.
As reported by ZDNet, a safety researcher has found a brand new dark web portal that’s a part of a database ransom scheme that has been ongoing since the starting of this yr.
Cybercriminals concerned in the scheme break into MySQL databases, obtain tables, delete the originals and depart behind ransom notes informing server house owners that they should contact the attackers with the intention to get their information again.
At first these ransom notes requested victims to contact the attackers by electronic mail however as the scheme has progressed, these accountable have automated the operation utilizing a web portal which is now hosted on an Onion tackle on the dark web.
Databases for sale
Each ransom observe left behind in a hacked database comprises a singular ID which should be entered by victims when visiting the attacker’s new web portal and this takes them to a web page the place their information is being offered.
If a sufferer does not buy their information from the attackers inside a nine-day interval, the contents of their database are then put up for public sale on a distinct part of the portal. This is kind of much like the manner wherein ransomware teams started to public sale off stolen information earlier this yr.
As with different ransom schemes, victims should pay for their information in bitcoin. However, it seems as if this operation could also be automated as these stolen databases price round $500 every no matter their contents.
Ransom assaults have turn out to be fairly fashionable amongst cybercriminals this yr with quite a few complaints from server house owners popping up all of the web. As a consequence, database house owners want to make sure their taking the correct steps to make sure their infrastructure, programs and information.