xDedic original domain (xdedic[.
]biz) went down last month on June 15 right after security firm Kaspersky Lab publicly exposed it.
The report fromKaspersky Labexplained how xDedic provided a platform for the sale of compromised RDP servers.
Researchers at Digital Shadows reported that a June 24 post to the Russian-language forum, exploit[.
]in, included a link to the .onion site now hosting xDedic.
However, following registration, accounts had to be credited with $50 USD to get to activate them.
CTO and co-founder James Chappell said domain had also been shared on a French-language dark web site.
Theyre upping their operational security a bit, but theyre obviously in a tricky place, Chappell told Threatpost.
Theyve got to advertise it.
You cant find it by browsing; they have to publish the link to point users to it.
Its a tricky balance marketing their services and hoping work of mouth will do the work for them.
Kaspersky Lab researchers worked with a European ISP to collect data used to investigate xDedic.
Kaspersky Lab has called the site a hackers dream.
The possibilities for theft and fraud are infinite via this forum.
source: www.techworm.net
