Iranian hackers sell access to compromised networks, Microsoft warns
Microsoft has warned that Iranian hackers are selling access to compromised networks on criminal forums.
The company said the hackers, known as DEV-0270, are using phishing emails to target organizations in the Middle East, North America, and Europe.
Once they have gained access to a network, the hackers sell access to the highest bidder on dark web forums.
The sale of access to compromised networks is a growing problem, and Microsoft estimates that it is now a $6 billion industry.
In 2021, Microsoft identified more than 1,000 compromised networks that were being sold on criminal forums.
The company said that the sale of access to compromised networks is a major threat to organizations, as it can allow criminals to steal sensitive data, launch ransomware attacks, and disrupt operations.
Microsoft advised organizations to take steps to protect themselves from this threat, including:
- Using strong passwords and two-factor authentication
- Being cautious about clicking on links in emails or on websites
- Keeping software up to date
- Having a plan in place to respond to a cyber attack
The company also said that organizations should consider investing in cyber insurance to protect themselves from the financial impact of a cyber attack.