Again, more than 73 million user records stolen from a number of online business services were offered for sale on the dark web by hacker group ShinyHunters. And this is only the beginning. Where only one or two years back, criminals seemed to be more interested in individual servers the interest seems to shift today towards enterprise networks access. "Access for sale" on the dark web is a generic term, referring to software, exploits, credentials, or anything else that allows illicitly controlling one or more remote computers. Successfully hacking a website, web server, database, or workstation means that the attacker has access. This access can be transferred or sold to third parties.
With so many employees currently working from home hackers are looking for different security lapses on the network perimeter, such as an unprotected web application, outdated software, or incorrectly configured servers with a weak administrator password. The larger the hacked company is, and the higher the obtained privileges, the more profitable the attack becomes.