Millions of users have had their data sold on bot markets according to reports. Criminals have also promised that the data is genuine and valid as long as the device in question is infected.
Millions of Users Have Had Their Data Sold On Bot Markets According To Reports
Cybercriminals are at the moment selling the complete digital identities of people on bot markets for just a handful of pocket money, according to new research.
Some cybercrooks according to a new report from NordVPN are infecting users with bot malware which will then harvest as much sensitive data on the victim as possible and this is including device screenshots, login credentials that are stored in the browser digital footprints such as screen resolution, device information, browser patent, cookies auto-fill forms and many other types of information.
The Stolen Data Is Being Sold On the Cheap
The data as you should know is then packaged and later sold on bot markets, sometimes just for $6 per user or person. The buyer on the other hand gets a guarantee from the seller that the data in question is valid and that it will also be updated with pieces of new information as long as the targeted endpoint remains infected with the malware.
NordVPN during its research analyzed three different bots markets which are the Genesis market, 2Easy, and the Russian Market. All of these markets were active and accessible on the surface at the time the analysis was made. And the most popular types of malware included RedLine, Racoon, Vidar, AZORult, and Taurus.
These Marketplaces Are Dangerous According To Researchers
The researchers are claiming that these marketplaces are seriously dangerous as exploiting the data sold is relatively easy. And with the help of passwords and cookies, these actors in question can bypass security protections and then establish a foothold in the social media and business accounts of people and then make use of the stolen identities in committing wire fraud, distribute malware and ransomware, or simply just re-sell the account for a higher price.
What the Researchers at NordVPN Have to Say about the Development
“A hacker can, for example, take control of a victim’s Steam account by changing the password. Steam accounts are sold for up to $6,000 per account and can be easy money for a criminal,” CTO at NordVPV, Marijus Briedis stated.
“To protect yourself, use an antivirus at all times. Other measures that could help – a password manager and file encryptions tools to make sure that even if a criminal infects your device, there is very little for them to steal.“