![]() ![]() Breached credential databases are often shared with the criminal community online so that others can then unscramble the hashed passwords into plaintext ones the community spirit doesn't end there, as the now plaintext credentials are then often also shared for free. ![]() Unsurprisingly, it has to be said, when the tools required to obtain them, such as brute-force password crackers and account checkers, can be bought for as little as $4 (£3.19) on the dark web. The commoditization of breached credentials, as evidenced by that 300% rise in availability over two years, has driven pricing downwards to the point where freely available stolen credentials are not hard to find. The truth of the matter is that it has never been easier for cybercriminals to take over accounts, nor cheaper. However, all these prices have to be taken within the context of relating only to the ones that were being commercially traded. The commoditization of breached credentials These higher prices are regarded as good value, given that such privileged accounts can read and modify sensitive data and provide open access to critical assets. The report reveals that these were usually sold by auction because of their value to criminal hackers, with an average of £3,139 (£2,505) and, in some cases, reaching a price of $120,000 (£95,732). The prices took a sharp hike upwards when it came to domain administrator accounts that could give access to internal business networks. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |