💡This post is part of Free Post Friday! If you're not a paid subscriber to the platform, these are some of the details you would see if you were a paid subscriber!
💡 Subscribe to DarkWebInformer.com for Unmatched Cyber Threat Intelligence 💡
Why Subscribe? Let me do the work and save you time.
Stay ahead of cyber threats and safeguard your digital assets while enhancing your cybersecurity awareness with these exclusive subscriber-only features:
-
📜
Detailed Threat Posts: Stay updated on breaches, ransomware, DDoS attacks, and more.
-
📡
Exclusive Threat Feeds: Access the latest ransomware victim disclosures, breaches, and other critical updates.
-
🖼️
High-Resolution Screenshots: All posts include watermark-free, high-resolution images.
-
🔗
Direct Claim URLs: Instantly access claims with direct links for fast verification.
Quick Facts
📅 Date: 2025-01-10 01:30:18
🚨 Title: Alleged sale of RDWeb access targeting U.S. sports retail company
🛡️ Victim Country: USA
🏭 Victim Industry: Sporting Goods and Recreational Equipment Retail
🏢 Victim Organization: Unidentified
🌐 Victim Site: Not disclosed
📜 Category: Initial Access
🔗 Claim: https://forum.exploit.in/topic/252484/
🕵️♂️ Threat Actor: ProfessorKliq
🌍 Network: Openweb
WhiteIntel Data Leak Information
No Victim Site Disclosed
Description
Threat actor ProfessorKliq has advertised the sale of RDWeb (Remote Desktop Web Access) to a sporting goods and recreational equipment retail company based in the USA. The offering includes domain-level user access rights and indicates that the infrastructure is protected by Microsoft Defender for Endpoint. The company reportedly has 97 employees and annual revenue of $59.4 million.
The auction has the following details:
- Starting Price: $1000
- Bid Step: $100
- Blitz Price: $1500
- Auction Duration: 24 hours
Compromised Data & Access
The threat actor claims to provide access that includes:
- RDWeb access: Domain-level credentials
- Company protection status: Microsoft Defender for Endpoint installed
Details
Threat Actor Reputation:
ProfessorKliq is known to target and advertise high-value targets, as evidenced by past posts involving access to corporate infrastructure.
Impact Potential:
This sale represents a significant threat to the compromised organization. RDWeb access can enable attackers to bypass conventional network security, leading to data theft, ransomware deployment, and operational disruption.
Implications
Organizations relying on RDWeb services and Microsoft Defender for Endpoint should immediately assess their security postures. Companies in the sporting and recreational retail industry should investigate potential unauthorized access, prioritize credential hygiene, and ensure endpoint security systems are robust and up-to-date.
