Jul 11, 2018

Access to major airport's security system offered on dark web for $10

An airplane flies. Photo: Aviation-images.com/UIG via Getty Images

Researchers at McAfee found remote access to a major airport's security system available on the dark web for $10.

Why it matters: The hacked access came from an online market for remote desktop protocol (RDP) accounts, which sell access to hacked accounts in all kinds of systems. "There’s a lot of discussion about sophisticated nation-state attacks, but this was a really cheap way anyone could get access to something," Raj Samani, chief scientist at McAfee, told Axios.

Why so cheap? The RDP market isn't typically about purchasing access to systems to actually use the systems. Instead, buyers pay between $3 and $19 for access to machines based on bandwidth. Those systems are often used for their resources rather than their information.

  • That could mean uploading cryptomining software or launching other cyberattacks from the RDP-enabled system.
  • When the attacks are based on the information on the system, it's often to hold that information hostage for monetary gain. A $3-$19 dollar account purchased at the market could be used to upload ransomware. "Sam Sam ransomware used this method and cost $40,000 to decrypt data. You do the math," said Samani.

McAfee worked with the airport to plug the security gaps, but RDP access is an often overlooked security threat on systems worldwide.

Go deeper

Biden formally secures Democratic presidential nomination

Joe Biden speaks at Delaware State University's student cente on June 5. Photo: Jim Watson/AFP via Getty Images

Former Vice President Joe Biden became the formal Democratic presidential nominee on Friday evening, per AP.

The big picture: Biden has been the presumptive frontrunner to take on President Trump since Sen. Bernie Sanders suspended his campaign in early April.

Updated 4 hours ago - Politics & Policy

Coronavirus dashboard

Illustration: Sarah Grillo/Axios

  1. Global: Total confirmed cases as of 9 p.m. ET: 6,724.516 — Total deaths: 394,018 — Total recoveries — 2,996,832Map.
  2. U.S.: Total confirmed cases as of 9 p.m. ET: 1,894,753 — Total deaths: 109,042 — Total recoveries: 491,706 — Total tested: 19,231,444Map.
  3. Public health: WHCA president says White House violated social-distancing guidelines to make reporters "a prop" — Jailing practices contribute to spread.
  4. Sports: How coronavirus could reshuffle the sports calendar.
  5. Jobs: Better-than-expected jobs report boosts stock market.
  6. Media: The Athletic lays off 8% of staff, implements company-wide pay cut.

Scoop: German foreign minister to travel to Israel with warning on annexation

Heiko Maas. Photo: Michael Kappeler/picture alliance via Getty Images

German Foreign Minister Heiko Maas is expected to travel to Israel next week to warn that there will be consequences if Israeli leaders move forward with plans to annex parts of the West Bank, Israeli officials and European diplomats tell me.

Why it matters: Israeli and European officials agree that if Israel goes ahead with unilateral annexation, the EU will respond with sanctions.