- A new report shows the average prices that hackers are willing to pay in exchange for control of different online accounts that have been compromised.
- Selling stolen login credentials is a common practice on the dark web, a collection of underground networks, where hackers will pay a high price for access to personal data, counterfeit documents, and hacked social media accounts.
- Compromised Gmail and Facebook accounts are among the priciest stolen logins, possibly because they could be leveraged to gain broader access or trick other people into handing over information.
Can you put a price tag on the security of your online accounts? Hackers certainly can and a new report shows the average price they’re willing to pay for compromised account logins traded on the dark web.
Researchers with Privacy Affairs analyzed hundreds of recent listings on the dark web, where hackers routinely exchange stolen credentials . The researchers indexed the average prices of different types of logins for sale.
A hacked Facebook account goes for $74.50 on average, while Instagram accounts averaged $55.45 and Twitter logins went for $49 on average.
A hacked Gmail account averaged a higher selling price $155,73, on average due in part to the fact that it could potentially provide a wide range of insight into a target’s life and other accounts.
Hackers also regularly use compromised email accounts to trick other victims into sending compromising information email scams cost businesses $1.7 billion in 2019, FireEye study found that 91% of all cybercrimes start with an email.
Even more lucrative than social media accounts are payment processing service accounts, which hackers use to send cash transfers from other grifts in order to avoid detection by law enforcement. Hackers offered to use stolen PayPal accounts to transfer amounts ranging from $1,000 to $3,000 in exchange for a $320 fee on average, according to the report.
Meanwhile, information on people’s credit cards and debit cards sell for less anywhere from $15 to $35 on average in part because those transactions are easily traceable.
- DDoS attacks increase more than 500 percent over last yearThe second quarter of 2020 has seen a massive 570 percent increase … Read More
- Instagram patches bug that allowed hackers to take over users’ phones – Update Now!The bug would have allowed a bad actor to take over a … Read More
- Malicious cyber actors are actively exploiting Zerologon Windows vulnerability – Microsoft warnsMicrosoft warned on Thursday that malicious cyber actors have been exploiting the … Read More
- Which console is right for you? Xbox Series X vs. PS5The Xbox Series X and PS5 from Microsoft and Sony, respectively, are … Read More
- PlayStation 5 will launch Nov. 12 at GHC2900Sony’s upcoming PlayStation 5 video game console will cost GHC3,000 and launch … Read More
Daniel Markuson, an analyst with NordVPN, which partners with Privacy Affairs, said the selling prices for compromised social media accounts are “relatively low,but noted that hackers typically access accounts in order to pull off more lucrative scams.
“This information can be used in many fraudulent activities, including identity theft, so its protection shouldn’t be underestimated“,Markuson said.
The report recommends that people regularly change their passwords in order to avoid having their accounts compromised. Services like Have I Been Pwned are available to check whether a login and password have been stolen in a past breach. Using a password manager can also help keep accounts secure.