Hackers Selling Access to Airport Security

Researchers at McAfee’s Advanced Threat Research team have discovered that credentials for systems at a major international airport are being sold on the dark web for just $10. Airport admins verified the authenticity of the credentials, which would have allowed control of “systems linked to security and building automation systems.” They resolved the issue after being informed by McAfee. Researchers withheld the name of the airport for confidentiality reasons.

The stolen credentials were for the airport’s remote desktop protocol (RDP), which allows employees to work through specific computers from outside the local network. RDP credentials are the perfect opening for cybercriminals, and it has led to thriving dark web markets where stolen credentials are bought and sold. For years, malware strains like the SamSam ransomware have used RDP credentials to compromise systems.

Read more

Related Posts

Leave A Comment