A hacker is reportedly selling access to the email accounts of hundreds of C-level executives on a popular closed-access underground forum for Russian-speaking users.
As per ZDNet that first reported the news, the hacker is selling email and password combos for Office 365 and Microsoft accounts belonging to high-level executives such as the CEO, COO, CFO, CMO, CTO, President, and Vice president, with prices varying between $100 - $1,500 depending on the company size and the person’s role in it.
With the help of a source in the cyber-security community, who agreed to contact the seller to buy samples, ZDNet was able to confirm the authenticity of some of the data available for sale and obtain “valid credentials for two accounts, the CEO of a US medium-sized software company and the CFO of an EU-based retail store chain.”
Currently, it is not clear how the seller obtained the login credentials, but they claim that they have more data to sell.
According to security researchers at KELA, the same hacker was also interested in acquiring so-called "Azor logs," which is data collected from devices infected with the AZORult info-stealer trojan. AZORult steals data from compromised systems, including saved passwords from browsers and email, Skype message history, files from chat history, and desktop files, among many others. The collected data often ends up on underground markets, hacker forums, or is sold to other cybercrime groups.