Tue, 12/23/2008 - 10:46 — Igor Donchenko
German researchers have discovered more than 300 cybercrime servers full of stolen credentials on more than 170,000 people from 175 different countries - and it is only the tip of the iceberg, they say.
"With our limited amount of machines, we found more than 300 dropzones, and we covered only two families of banking Trojans. In total, there are presumably many more," says Thorsten Holz, one of the researchers and a founder of the German Honeypot Project. The researchers were studying what they call "impersonation attacks," where victims' credentials are stolen so that the attacker can impersonate them.
They also found more than 5,600 credit card accounts and tens of thousands of passwords for various sites. Holz says he and his team accessed the dropzone servers in different ways, but is unable to provide any details for fear that the attackers would use that information to further lock down their servers.