Skip to content
Techzine Europe
Techzine News Security Hackers sell data center login credentials of large multinationals
  • Home
  • Articles
    • Topstories
    • Analytics
    • Applications
    • Collaboration
    • Data Management
    • Devices
    • Devops
    • Infrastructure
    • Privacy & Compliance
    • Security
  • Insights
    • All Insights
    • Low-code
    • Security
  • Information
    • Become a partner
    • About us
    • Contact us
    • Terms and conditions
    • Privacy Policy
  • Techzine Europe
  • Techzine Netherlands

"*" indicates required fields

Stay tuned, subscribe!

Nieuwsbrieven*
This field is for validation purposes and should be left unchanged.

Hackers sell data center login credentials of large multinationals

Hackers sell data center login credentials of large multinationals
Sander Almekinders
February 21, 2023February 21, 2023
3 min

Tags in this article

data centers, hack, login credentials, multinational companies

Cybercriminals put stolen login data from large companies up for sale in late January. The data came from a number of the companies’ Asian data centers.

This was discovered by security specialist Resecurity in an investigation ongoing since September 2021. According to the investigation, several data center providers, cloud service providers and MSPs in Asia have been affected by a sustained cyber attack. The cybercriminals, originating from China and some other Asian countries, set out to steal login credentials and other sensitive data from (large) customers.

Bloomberg writes that the affected data center providers are Shanghai-based GDS Holdings and Singapore-based ST Telemedia Global Datacenters. Companies from which login credentials and data were allegedly stolen include Alibaba, Amazon, Apple, BMW, Goldman Sachs, Huawei, Microsoft and Walmart.

Multi-year attacks

The attacks have a long evolution, Resecurity’s security experts discovered. The first malicious cyber activities were spotted in September 2021. During this first attack, the cybercriminals managed to get their hands on a list of CCTV cameras, followed by login credentials of operational employees of the data centers themselves and employees of customers operating in the data centers. In addition, they got their hands on data about services purchased and equipment deployed. In addition, they showed interest is the availability of a “remote hands service (RHS) that allows customers to remotely manage their servers in the data center and troubleshoot problems before that.

In the second wave of attacks, carried out throughout 2022, the cybercriminals again managed to steal a customer database with more than a thousand records at a Singapore data center company. This attack, however, was detected and eventually repelled.

The third and, for now, final episode of this attack occurred recently. Investigators discovered that the cybercriminals put the stolen login credentials and other data of major customers of the affected data center companies up for sale on the dark web. More specifically, this involves the RAMP platform that is mostly used by Initial Access Brokers (IABs) and ransomware criminals.

Also read: European companies plan to increase IT security budget over next three years

Impact unknown

The researchers say they cannot estimate the impact of this large-scale theft of login credentials and other data. By going public now about these attacks on the aforementioned data center providers, they hope to mitigate any impact, but also to create more awareness of this type of attack. Meanwhile, in addition to the affected companies, several CERTs of the affected countries have also been informed about the attack.

Recent in Security

CrowdStrike invests in security startup Abnormal Security

Cisco to acquire Lightspin to deliver “Contextual Cloud Security”

802.11 WiFi protocol has a fundamental design flaw in security

IBM Aspera Faspex servers are being targeted by ransomware gangs

Acronis integrates Intel TDT technology for greater CPU efficiency

Jobs - Techcareer

Beheerder Hostingomgeving

Veenendaal Full time

Hybrid Cloud Transformation Presales Consultant

Amstelveen Full time

Related articles

Hackers gain access to UK Pension Protection Fund data

Hackers gain access to UK Pension Protection Fund data

AWS adopts biofuels for data center backup generators

AWS adopts biofuels for data center backup generators

AWS announces Modular Data Center for US Defense Department

AWS announces Modular Data Center for US Defense Department

Vantage Data Centers comes to London with €560 million investment

Vantage Data Centers comes to London with €560 million investment

Google data center drains Oregon city of its water

Google data center drains Oregon city of its water

Events - Techcalendar

April 20, 2023, Eindhoven Borderless IT: IT to the MAX

Borderless IT: IT to the MAX

May 8, 2023, Orlando SAS Innovate

SAS Innovate

May 8, 2023, Las Vegas Beyond 2023 by ThoughtSpot

Beyond 2023 by ThoughtSpot

Top Stories

What is Microsoft Loop? App syncs realtime across M365, staying in the loop

What is Microsoft Loop? App syncs realtime across M365, staying in the loop

Microsoft made the first public preview of its new workplace app available, called Loop. The company boasts s...

Salesforce settles with activist shareholder, does peace return?

Salesforce settles with activist shareholder, does peace return?

Salesforce is engaged in a hefty battle at the board level with several activist shareholders. These believe ...

AMD seems to be changing tack; hybrid architecture chips incoming?

AMD seems to be changing tack; hybrid architecture chips incoming?

Intel has had chips with a combination of powerful cores and efficient cores for quite some time, but AMD did...

Metaverse promises much, doesn’t deliver yet; Disney pulls plug on division

Metaverse promises much, doesn’t deliver yet; Disney pulls plug on division

Will the metaverse meet the same fate as 3D TVs and VR glasses? Disney's decision to pull the plug on the ent...

As fear of cyber threats rises, organizations have to review their security strategy

As fear of cyber threats rises, organizations have to review their security strategy

“Frankly, I live in terror of a ransomware attack and state-sponsored intrusions.” This quote from a b...

Recent news

ThoughtSpot brings data analytics platform to Google Cloud

ThoughtSpot brings data analytics platform to Google Cloud

ThoughtSpot is bringing its analytics platform to the Google Cloud public cloud environment. The parties are ...

dateJust now
HP introduces new laptops and tools for hybrid working

HP introduces new laptops and tools for hybrid working

HP recently released another series of business laptops and solutions designed specifically for hybrid workin...

dateJust now
UiPath is working on AI chatbot assistant for workflow automation

UiPath is working on AI chatbot assistant for workflow automation

UiPath is developing a conversational AI assistant for fully automating workflows. For this, the RPA speciali...

dateJust now
New Twitter API subscriptions exclude many developers

New Twitter API subscriptions exclude many developers

Twitter has unveiled three subscriptions for its API that users or organizations can take advantage of. A fre...

dateJust now
“AI will cause significant global labor market disruption”

“AI will cause significant global labor market disruption”

According to the investment bank, as AI becomes "indistinguishable from human-created output," there will be ...

date33 minutes ago
Microsoft Defender identifies Google and Zoom as malicious

Microsoft Defender identifies Google and Zoom as malicious

The Windows native security app had "gone rogue" and was misidentifying legitimate URLs as malicious. This...

date46 minutes ago

Techzine Europe - Your single source of truth!

Techzine focusses on IT professionals and business decision makers by publishing the latest IT news and background stories. The goal is to help IT professionals get acquainted with new innovative products and services, but also to offer in-depth information to help them understand products and services better.

Follow us

Twitter LinkedIn Facebook

© 2023 Dolphin Publications B.V.
All rights reserved.

Techzine Service

  • Become a partner
  • Advertising
  • About Us
  • Contact
  • Terms & Conditions
  • Privacy Statement