Intel Security has released The Hidden Data Economy Report which provides an interesting insight into the overlooked issue of what happens to individual’s and organisation’s data after a breach. The report highlights how cybercriminals are profiting from different types of stolen data by packaging it and selling it on the Dark Web. This research comes at an interesting time in Australia with the recent cyber attacks on high-profile retail brands, David Jones and Kmart, and shows what cybercriminals can do with this compromised data.
Through years of close work with law enforcement, the McAfee Labs team has monitored websites, chat rooms, and other online platforms, communities, and marketplaces where stolen data is bought and sold. Its researchers have provided a “state of the cybercrime economy” assessment with an illustration of key types and prices of data bought and sold in cybercriminal marketplaces.
- Average estimated price for stolen credit and debit cards: $21 to $40 in Australia; $5 to $30 in the United States; $20 to $35 in the United Kingdom; $20 to $40 in Canada; and $25 to $45 in the European Union
- Bank login credentials for a $2,200 balance bank account selling for $190
- Bank login credentials plus stealth funds transfers to U.S. banks priced from $500 for a $6,000 account balance, to $1,200 for a $20,000 account balance
- Bank login credentials and stealth funds transfers to U.K. banks range from $700 for a $10,000 account balance, to $900 for a $16,000 account balance
- Online payment service login credentials priced between $20 and $50 for account balances from $400 to $1,000; between $200 and $300 for balances from $5,000 to $8,000
Key types of stolen data:
- Payment Cards
- Payment Service Accounts
- Bank Login Credentials
- Online Premium Content Services
- Loyalty, Community Accounts
“Recent attacks on Australian organisations highlight cybercriminals skill and intent on exploiting individual’s and organisation’s data for financial gain. Identity theft is a very real threat in today’s society and this report indicates the increasing importance for individuals and organisations to expand their knowledge of cyber attacks and online scams to ensure their data is secure at all times,” said Mike Sentonas, APAC Chief Technology and Strategy Officer, Intel Security.
Please find the press release and full report attached for further information.