Parler hosting company's code offered up for sale online
However experts doubt legitimacy of the information
The source code and database of DDoS-Guard, the web hosting platform of the controversial social media company Parler has apparently been posted for sale online.
Amazon Web Services (AWS), the original hosting provider for the beleaguered social network, pulled the plug earlier this year over apparent insufficiencies in Parler's content moderation policy.
Parler then found refuge with the Russia-based hosting provider DDoS-Guard, but researchers from cyber-intelligence company Group-B have uncovered a cybercrime forum listing offering DDoS-Guard’s database and the entire source code for its infrastructure for $350,000.
We're looking at how our readers use VPN for a forthcoming in-depth report. We'd love to hear your thoughts in the survey below. It won't take more than 60 seconds of your time.
- These are the best endpoint protection tools
- Here's our choice of the best malware removal software on the market
- Check our roundup of the best web hosting services
Poetic justice
According to the post, the database supposedly contains information about DDoS-Guard’s customers, including their names, IP-addresses, and payment information. However, Group-IB has said that it can’t verify the authenticity of the data, since the poster hasn’t provided a sample.
“If the data is legitimate, the threat actors can potentially use it in a number of ways: from mass spamming and follow up targeted phishing attacks,” said Group-IB’s threat intelligence analyst, Oleg Dyorov, speaking to CyberScoop, adding that the data could perhaps even be used to conduct ransomware attacks.
If the data is indeed authenticated, it’d be ironic given DDoS-Guard’s flirtations with the law.
Adrianus Warmenhoven, chief information security officer at Dutch cybersecurity firm Tesorion, told CyberScoop that DDoS-Guard is one of those hosting companies that are adept at staying “just at the edges of the law.”
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
In its earlier report on online piracy, Group-IB too had observed that DDoS-Guard not just hosts but also obstructs the identification of website owners of hundreds of shady resources that are engaged in illicit goods sale, gambling, and copyright infringements.
- We’ve also rounded up the best free web hosting services
Via CyberScoop
With almost two decades of writing and reporting on Linux, Mayank Sharma would like everyone to think he’s TechRadar Pro’s expert on the topic. Of course, he’s just as interested in other computing topics, particularly cybersecurity, cloud, containers, and coding.