
A surge in infostealer malware attacks has catalyzed a significant increase in credential stealing, transforming it into a lucrative business for cybercriminal groups. Kaspersky, a cybersecurity company, reports a sevenfold rise in data stealing attacks over the past three years, leading to compromises of over 10 million personal and corporate devices in 2022 alone, with potentially 16 million more affected in the following year.
The evolution of data-stealing malware has enabled hackers to operate stealthily, harvesting login credentials and sensitive information from both personal and corporate devices. This proliferation of data exfiltration attacks has resulted in cybercriminals amassing close to 400 million logins and passwords from various websites in the past year, averaging around 50.9 login credentials per infected device.
The increasing value of corporate credentials in the cybercrime market has fueled a 643% surge in data-theft attacks, as cybercriminals capitalize on stolen credentials to breach corporate networks and orchestrate further malicious activities. Initial access brokers, acting as intermediaries, peddle stolen corporate credentials on dark web forums, fetching premium prices from fellow criminals seeking to exploit compromised networks.
These underground markets offer multiple sales models, ranging from subscription services for regular uploads of stolen credentials to exclusive shops catering to selected buyers. Prices typically start at $10 per log file, with variations depending on the value and exclusivity of the stolen data.
The Asia-Pacific (APAC) and Latin America (LATAM) regions have been particularly affected by credential stealing attacks, with millions of credentials stolen from countries like Brazil, India, Colombia, and Vietnam. In Australia, compromised or stolen credentials accounted for a significant majority of cybersecurity incidents, highlighting the prevalence and impact of credential theft.
As the cybercrime landscape continues to evolve, with darknet markets proliferating and cybercriminals adopting sophisticated tactics, organizations must remain vigilant and adopt robust cybersecurity measures to safeguard against credential theft and data breaches. Heightened awareness, proactive threat detection, and comprehensive security protocols are essential to mitigate the risks posed by credential attacks in today’s digital ecosystem.
Leave a Reply