- Bank cards and ID cards are easily available and cheap on the dark web, warns NordVPN
- UK citizens are a major target, and their data is worth more
- The best solution is to protect your online accounts
We already know the risks of using the internet and how basic cybersecurity hygiene principles can do a lot of the heavy lifting when it comes to keeping you safe, but NordVPN has revealed exactly what happens to your data after it’s been stolen.
The company’s research found that stolen payment card data in the UK is now commonly sold on dark web marketplaces for around £9 (around $12), with more complete ‘digital identity packages’ selling for around £30 ($40).
Among the best sellers are payment cards, copies of digital passports (£26), copies of digital driving licenses (£26) and complete packages of the above and more.
Criminals buy bits of information here and there.
Perhaps the most worrying finding is not the existence of these marketplaces and the fact that personal and sensitive information is so easily accessible, but rather how cheaply criminals can acquire enough information to commit fraud.
“When people hear that stolen data is sold for the price of a coffee, it can seem almost trivial,” wrote CTO Marijus Briedis; Since for such a small amount of money, criminals can commit identity theft, account takeover, credit and loan application fraud, phishing campaigns and more.
The company also noted that UK consumers are among the most valuable, with payment card data being priced “slightly above” the European average and ID documents being “comparatively high-priced”.
However, the company is concerned that it will become increasingly difficult to notice an attack as identity theft becomes quieter and more gradual. Small pieces of leaked information end up combining to form a larger picture, resulting in broader identity profiles.
“Most people still think that identity theft is something dramatic and obvious, when in reality it can start quietly, with some personal data or copied documents exchanged online,” Briedis added.
How to stay safe online
To help consumers understand the threat, NordVPN has launched an interactive dark web calculator to quantify how much an individual’s data could be worth based on the online accounts and digital identities they possess, and their country of origin.
On the site, the company explains that regular personal emails can cost as little as $1, while more valuable corporate accounts tend to command a higher price on dark web marketplaces because they can give attackers access to sensitive company systems.
When it comes to social media, Meta-owned platforms are among the most attractive simply because of the company’s dominance in the market. A single login could allow an attacker to access multiple accounts on Facebook, Instagram, Threads, and more.
Introducing a number of solutions for consumers, NordVPN suggests using unique passwords for each account with multi-factor authentication in addition. Replacing traditional passwords with passkeys is a big win for consumers because they can’t be stolen or copied from password managers and the underlying technology relies on matching an account to your device.
Checking bank statements frequently for unexpected charges can also help identify attacks: NordVPN incorporated its own Dark Web Monitor as a similar type of tool that alerts users when sensitive personal data hits a dodgy market.
“The sooner people understand the value of their data and how exposed it may be, the better their chances of protecting themselves,” Briedis concluded.
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds.
