Threat Actor: Unknown | Unknown
Victim: Iranian Pipeline Company | Iranian Pipeline Company
Price: $5000
Exfiltrated Data Type: Company emails, access to hosts
Additional Information:
- The threat actor is offering unauthorized access to the RDP of a prominent Iranian Pipeline/Petrol/Chemicals/Logistics Company.
- Access to the accounts of 35+ domain users can be obtained through the entered device.
- Company emails can be used with these accesses.
- Access to 25+ hosts can be gained.
- This access provides authorization of the domain admin system.
In a concerning development, a threat actor has surfaced, asserting the availability of unauthorized access to the RDP of a prominent Iranian Pipeline/Petrol / Chemicals / Logistics Company. The threat actor does not provide information about the company’s valuation. However, it is claimed that access to the accounts of 35+ domain users can be obtained through the entered device, It is said that with these accesses, company emails can be used. Additionally, access to 25+ hosts can be gained.
This access facilitates entry into Windows systems through a RDP, providing authorization of the domain admin system. Furthermore, the threat actor has established price for this illicit access at $5000.
Original Source: https://dailydarkweb.net/threat-actor-offers-unauthorized-rdp-access-of-iranian-pipeline-company/