At least 91 dark web sites suffered a breach after a malicious actor accessed their hosting provider’s server and apparently managed to export files and possibly linked databases as well, BleepingComputer reported on Monday.
According to the report, on July 8, a hacker with the alias “Dhostpwned” registered a shared hosting account on the dark web hosting service Deep Hosting, before uploading a pair of shells onto the company’s servers, one of which successfully granted the attacker limited rights to execute commands.
In a company wiki page quoted in the report, Deep Hosting said it detected the intrusion on July 9 and took steps to secure its clients. BleepingComputer also privately spoke with the Dhostpwned, who said “I’ve got the majority of files hosted from the site, all of their sql dbs.” The hacker also admitted to accessing the server hosting the illegal marketplace M.N.G Market and then accidentally wiping its hard drive’s master boot record, causing the site to go down. The hacker does not intend to dump any data gleaned from the breach, the report states.