PandaLabs uncovers an online Facebook password hacking service from a domain registered in Moscow

According to its Ukraine-based creators, hacking an account costs $100, payable through Western Union


“Any Facebook account can be hacked”, claim the creators of an online service which, for only $100, provide clients with the login and password credentials to access any account on the popular social networking site. This not only includes accounts belonging to ordinary people, but also celebrities, politicians, or well-known companies.

Payments are conducted online through Western Union, and end up in the Ukraine, which further fuels the idea that most Internet mafias are based in Eastern Europe. The domain that hosts the service is registered in Moscow.

The company claims to have been offering this service for four years with only one percent of accounts hack-proof. In these cases, they offer clients a money-back guarantee. However, the domain is just a few days old.

Also, users can get extra dollar-credits to spend on the service when they hack more accounts. They can even become affiliates to help hackers reach a broader audience. These affiliates receive 20 percent of what they sell in credits for hacking more accounts.

A series of images illustrating the sales flow can be found on the PandaLabs blog:

According to Luis Corrons, Technical Director of PandaLabs, “The system’s real purpose may be hacking Facebook accounts as they say, or profiting from those that want to try the service. In any case, the Web page is very well designed. It is easy to contract the service and become, either the victim of an online fraud, or a cyber-criminal and accomplice in identity theft.”

Once an intruder hacks into a Facebook account, all personal data published on the site can be stolen. Similarly, those accounts can also be use to send malware, spam or other threats to the victim’s contacts. In the case of celebrities of other well-known entities, they can be used to defame the account holder, spread information in their name, etc.  In any event, this is criminal activity”, reminds Corrons.