After the news that three important antivirus companies were hacked was made public, experts at the Advanced Intelligence company claimed that Russian cyber-pirates going by the name of Fxmsp were selling the stolen codes in the Deep Web. Besides the codes, the group offers access to the aforementioned companies for a $300.000 fee.
The allegedly affected antivirus companies are Symantec, McAfee and Trend Micro, which have already been attacked by hackers before. Back in 2012, Symantec admitted that, 6 years prior, cyber-pirates did the same with Norton antivirus. In 2015, Kaspersky also admitted to having been infiltrated.
According to available information, the computer security experts contacted the victims about their investigation while also providing authorities with some details. The group of hackers would have started selling the stolen data through private communication channels such as hacking forums in the Deep Web and Telegram chat groups.
Investigators claim that Fxmsp’s hack is the gravest of all infiltrations he has ever seen, as the hackers were able to get their hands on data such as: source codes for the antiviruses, A.I. models for threat detection, user panels, web security panels, internet safety software and more.
On the other hand, it is presumed that the hackers needed at least 6 months to Access the antivirus companies. They are also believed to work from Moscow, Taiwan and the United States.
“Fxmsp claim their hacking abilities continually improve, increasing their chances to access information stored in secure systems,” said the specialists.
There is talk of a fourth company that may have also been compromised, though there has been no confirmation of it. Currently, the FBI is investigating the matter.