Report an incident

Get 24/7 incident response assistance from our global team

Talk to sales

Just fill out the form, and our representative will contact you soon.

Join the Cybercrime Fighters Club

Please review the following rules before submitting your application:

1. Our main objective is to foster a community of like-minded individuals dedicated to combatting cybercrime and who have never engaged in Blackhat activities.

2. All applications must include research or a research draft. You can find content criteria in the blog. Please provide a link to your research or research draft using the form below.

← Webinars

Fxmsp: The story of 1 hacker who sold access To networks

In October 2017, Group-IB’s Threat Intelligence (TI) specialists detected the activity of the threat actor known as Fxmsp, who at the time was starting to sell access to various corporate networks belonging to different companies around the world.

On-Demand

39 min

· July 2, 2020

Fxmsp: The story of 1 hacker who sold access To networks
Dmitry Shestakov

Technical Director

About the webinar

In just over three years, Fxmsp managed to penetrate networks in more than 44 countries and put access to 135 networks on sale on underground forums. Group-IB estimates that Fxmsp made at least $1.5 million while active. Group-IB’s TI specialists tracked Fxmsp’s movements in the Russian-speaking underground from the moment he registered on the first forum in September 2016 to when he ceased all public activity in 2019.

Key findings

  • What tactics Fxmsp used to get access to corporate networks and persist in infected systems
  • The evolution of Fxmsp’s activity
  • The victim portfolio, including geographical scope and industries
  • How we were able to identify the potential face behind the Fxmsp mask

Webinar recording