- Bank cards and IDs are easily available and cheap on the dark web, warns NordVPN
- British citizens are a big target, with their data worth more
- The best solution is to secure your online accounts
We already know the risks of using the internet and how basic cybersecurity hygiene principles can do a lot of the heavy lifting when it comes to keeping you safe, but NordVPN has revealed exactly what happens to your data after it’s stolen.
The company’s research found that stolen UK debit card details are now commonly sold on dark web marketplaces for around £9 (around $12), with complete more complete ‘digital identity packages’ selling for around £30 ($40).
Among the best selling information are debit cards, digital passport copies (£26), digital driving license copies (£26) and full bundles of the above and more.
Criminals buy information here and there
The most troubling finding may not be the existence of these marketplaces and the fact that personal, sensitive information is so readily available, but rather how cheaply criminals can obtain enough information to commit fraud.
“When people hear that stolen data is being sold for the price of a coffee, it can sound almost trivial,” wrote CTO Marijus Briedis — as for such a small amount, criminals can continue to commit identity theft, account takeovers, credit application and loan fraud, phishing campaigns and more.
The company also noted that UK consumers are among the most valuable, with payment card data priced “slightly above” the European median and identity documents coming in at “relatively high prices.”
But the company worries that it will become increasingly difficult to become aware of an attack as identity theft becomes more silent and gradual. Small pieces of leaked information end up being combined to form a bigger picture, leading to larger identity profiles.
“Most people still think identity theft is something dramatic and obvious, when in fact it can start quietly with a few personal details or copied documents traded online,” Briedis added.
How to stay safe online
To help consumers understand the threat, NordVPN has launched an interactive dark web calculator to quantify how much a person’s data could be worth based on the online accounts and digital identities they have and their country of origin.
On the website, the company explains that ordinary personal emails can cost as little as $1, while more valuable corporate accounts tend to command a higher price on dark web marketplaces because of how they can give attackers access to sensitive corporate systems.
When it comes to social media, Meta-owned platforms are among the most attractive purely because of the company’s dominance in the market. A single login could give an attacker access to multiple accounts across Facebook, Instagram, Threads and more.
NordVPN lays out a number of solutions for consumers and suggests using unique passwords for each account with multi-factor authentication on top. Replacing traditional passwords with access keys is a big win for consumers because they can’t be stolen and copied from password managers, and the underlying technology relies on matching an account with your device.
Regularly reviewing bank statements to spot unexpected charges can also help identify attacks – NordVPN plugged in its own Dark Web Monitor as a similar type of tool that alerts users when sensitive personal data hits a dodgy marketplace.
“The earlier people understand what their data is worth and how exposed it can be, the better chance they have to protect themselves,” Briedis concluded.
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds.
