FXMSP: The Hacker Who Sold Access to 135 Companies - How to Protect Your Business from Remote Desktop Port Vulnerabilities
Ever heard of the “invisible god of networks”?
In recent years, cybersecurity has become a major concern for individuals and businesses alike. With the rise of hackers and cybercriminals, it’s more important than ever to be aware of potential threats and take steps to protect yourself and your company. One such hacker that has gained notoriety in the cybersecurity world is known as FXMSP, also called the “invisible god of networks.”
Who is FXSMP?
FXMSP is a hacker who has been active since at least 2016. He has gained a reputation for selling access to corporate networks and intellectual property, and has reportedly made up to $40 million from these activities. He became more widely known after claiming to have hacked major cybersecurity companies such as McAfee, Symantec, and Trend Micro in 2020, offering access to their source code and product design documents for $300,000.
How does FXMSP operate?
FXMSP started out by breaching corporate networks to mine cryptocurrency, but over time he shifted to gaining access via unsecured Remote Desktop ports. He uses tools like mass scan to identify open Remote Desktop ports and then targets them. This method has given him access to a wide range of companies, including energy companies, government agencies, and Fortune 500 firms.
Since 2017, FXMSP has sold access to 135 companies in 21 countries, including a Nigerian bank and an international chain of luxury hotels. His success is largely due to the fact that many companies still leave Remote Desktop ports open and unsecured, making it relatively easy for hackers like FXMSP to gain access.
What can be done to protect against FXMSP and similar threats?
One of the best ways to protect against hackers like FXMSP is to close Remote Desktop ports if possible, or to limit access and move them off the typical Port 3389 if you need to use them. It’s also important to stay up to date on the latest cybersecurity threats and to take steps to secure your company’s network and intellectual property.
In conclusion, FXMSP is just one example of the many threats that exist in the world of cybersecurity. By taking steps to protect yourself and your company, you can reduce the risk of falling victim to these types of attacks.