A list of almost 8,000 credentials for FTP sites is circulating on the black market. Hackers are targeting FTP upload sites with the hopes of redirecting victims to spam or even infecting webservers that rely on FTP applications for updates. The New York Times and UNICEF are among the high-profile targets at risk for compromise. Hold Security said it is unsure of the scale and damage of these attacks, or who might be behind them. No major U.S. banks on the list, likely because FTP is not a secure means of file exchange.
Source: https://threatpost.com/large-list-of-ftp-credentials-for-sale-in-underground-forums/104275/