Previous Story
McAfee Labs Report Reveals Prices of Stolen Data on Dark Web
Posted On Oct 17 2015
Comment: Off
Payment CardsPayment card data is the most common type of data that is stolen.
The report investigated the murky world of buying and selling stolen digital information online, where everything from financial data and online services to a person’s entire digital identity can be had – for a price. The login credentials for an account with a balance of $2,200 costs $190.
Samani predicted that information, such as login credentials, that grants access to systems within organizations’ trusted networks will become the more valuable pieces of information on the black market.
Intel Security Thursday said the average estimated price for stolen credit and debit cards was $5 to $30 in the USA , $20 to $35 in the United Kingdom , and $20 to $40 in Canada, while it was $21 to $40 in Australia and $25 to $45 in the European Union. Prices rise based on additional information that allows criminals to accomplish more things with the core data.
For example, a basic offering includes a software-generated, valid number that combines a primary account number (PAN), expiration date and a card verification value (CVV) number.
This also includes information categorised as Fullzinfo, which comprises the victim’s billing address, PIN number, social security number, date of birth, the mother’s maiden name, and even the username and password used to access, manage, and alter the cardholder’s account online.
Bank login credentials coupled with the ability to stealthily transfer funds to USA banks ranged from $500 (£323) for a $6,000 (£3,880) account balance, to $1,200 (£776) for a $20,000 (£12,950) balance. Prices for access to premium cable streaming services start at $7.50, while professional sports streaming services cost $15. Account balances between $400-$1,000 were sold for as much as $50. The McAfee researchers came across a hotel loyalty account with 100,000 points listed for sale on a cyber marketplace for $20.
A few online services, such as login credentials to hotel loyalty programs and online auction accounts, would appear to be low value targets, but researchers found that these credentials are also offered for sale on the dark market.
Apparently, these allow buyers to conduct online purchases by pretending to be their victims.
Raj Samani, vice president and chief technology officer at Intel Security, told SCMagzine.com in an October . 15 email correspondence that several factors play into why the prices vary, including the scarcity of data and the difficulty of obtaining it.
“This ‘cybercrime-as-a-service’ marketplace has been a primary driver for the explosion in the size, frequency, and severity of cyber attacks”.
