Over 23 Million Credit Cards Are Traded On The Darknet

[Brother]

In the first half of 2019, more than 23 million users' payment card details were put up for sale on underground darknet forums. According to a report from researchers at Sixgill, nearly 15 million map data is owned by users in the United States, accounting for nearly 64.5% of the total data put up for sale.

The UK ranks second in terms of the number of compromised payment cards (7.43%). India ranks third (3.78), followed by Brazil (2.18%). According to the researchers, Russia ranks last with an indicator of .0014% (a total of 316 cards).

According to the researchers, Russia's last place in the rating is due to two factors, in particular, with a large number of hackers from the Russian Federation and the economic situation in the country.

Attackers began to use not only underground markets as trading platforms, but also IRC channels and platforms with implemented encryption, such as Telegram.

In total, 57% of compromised financial documents were associated with Visa cards, followed by Mastercard - 29%, AMEX accounted for 12%.

Compromised payment card details are offered on underground sites for as little as $ 5. Researchers divide the information sold into two classes. The first includes data that includes a three-digit card authentication code located on the back of the card, and the second includes information stored on the magnetic stripe of the card, which is necessary to create cloned cards for physical purchases.

“The centralization of fraudulent activity across multiple underground venues reflects the real world financial markets. This phenomenon seems to be an excellent opportunity for law enforcement to suppress a significant portion of cybercriminal activity. However, as the example of markets such as Alphabay, Hansa and Silk Road shows, "move" to other sites, "the researchers concluded.

 

[Tomcat]

About 15 billion stolen credentials found on the darknet​

Specialists from Digital Shadows have found 15 billion of credentials on various underground marketplaces on the darknet. The compromised credentials have been stolen in more than 100,000 hacks and provide access to a variety of accounts, including domain administrator accounts, banking and financial accounts, as well as social media and streaming accounts.

Prices on underground marketplaces for such information range from an average of $ 71 for bank accounts, $ 21 for access to antivirus software accounts, and up to $ 3.1 thousand for domain administrator accounts. Logins and passwords for video game user accounts and file-sharing sites were available for less than $ 2 per entry.
According to experts, credentials for financial accounts with verified cash or accounts with privileged access to the networks and systems of large enterprises were sold at very high prices. Dozens of advertisements for administrator accounts were found on clandestine forums and auctioned off to bidders at prices ranging from $ 500,000 to $ 120,000.

In total, 25% of ads for stolen and leaked credentials were linked to bank and other financial accounts. Other popular ad categories included streaming, proxy / VPN, and cable TV accounts.

According to experts, the threat of hacks is exacerbated by the tendency among large numbers of Internet users to use the same and often easily guessed passwords for multiple accounts. Tools like the Sentry MBA and OpenBullet have made it easier for cybercriminals to verify millions of usernames and passwords. Thus, attackers can use the credentials from one hack to try to gain access to other accounts.

According to a study by Digital Shadows, the number of compromised credentials available to cybercriminals on the darknet has grown by 300% since 2018. According to experts, of the 15 billion stolen credentials, about 5 billion are unique.

Illegal marketplaces such as Genesis Market, UnderWorld Market, and Tenebris provide criminals with the ability to rent access to various types of accounts, including e-commerce, streaming, and social media, sometimes for as little as $ 10 for a specific period of use ...