Just in:
Renewables Surge Sets Record, But Global Equity Lags // Meta Earth Official Website Launch: The Pioneer Explorer in the Modular Public Blockchain Domain // Sharjah Chamber Breaks Ground on Final Expansion with New HQ Pact // Superland Announced Annual Results for 2023, 2023 Net Profit Increased approximately 39.5% to approximately HK$22.2 million as Compared to the 2022 Adjusted One // Lisboeta Macau’s world first LINE FRIENDS PRESENTS CASA DE AMIGO and BROWN & FRIENDS CAFE & BISTRO has officially opened // Infineon and HD Korea Shipbuilding & Offshore Engineering jointly develop ship electrification technology // TUMI Hosts Global Launch Event in Singapore to Unveil Women’s Asra Collection and Announce Global Ambassador, Mun Ka Young // Arvind Kejriwal Was Used By BJP In 2011 Movement To Take On The Congress // German Job Market Resilience Bodes Well for Economic Recovery // Following the Money Trail: US and UK Investigate $20 Billion in USDT Transfers Tied to Sanctioned Russian Exchange // No running of govt from jail, says Delhi Lt Governor // Andertoons by Mark Anderson for Thu, 28 Mar 2024 // Sunshine’s Debut Features Leave Tech World Scratching Its Head // Ajman Celebrates Conclusion of Ramadan Activities with Grand Ceremony // U.S. Compliance Takes Center Stage at OKX Following Industry Jitters // US reiterates concern over Kejriwal arrest, Cong accounts // Konica Minolta is named ASEAN 2023 Market Leader in Colour Light and Mid Digital Production Printers // Court Sides with Coinbase on Wallet Service, But Staking Program Remains in Limbo // Ingdan Announces 2023 Annual Results // Universal Language for Healthcare: General Authority Embraces Global Coding System //
HomeTalking PointMaybe you can buy your own credit card details from black market

Maybe you can buy your own credit card details from black market

security data|TAP Special|If you are lucky, maybe you can buy your stolen credit card details from the black market yourself. If you are not, chances are that the information will land up with someone else, who will surely want to use it to make money off you.

A cybersecurity firm said on Tuesday that it uncovered stolen credentials from some 360 million accounts that are available for sale on cyber black markets, though it is unsure where they came from or what they can be used to access, according to Reuters.

The discovery could represent more of a risk to consumers and companies than stolen credit card data because of the chance the sets of user names and passwords could open the door to online bank accounts, corporate networks, health records and virtually any other type of computer system.

ADVERTISEMENT

Alex Holden, chief information security officer of Hold Security LLC, said in an interview that his firm obtained the data over the past three weeks, meaning an unprecedented amount of stolen credentials is available for sale underground.

“The sheer volume is overwhelming,” said Holden, whose firm last year helped uncover a major data breach at Adobe Systems Inc in which tens of millions of records were stolen.

Holden said he believes the 360 million records were obtained in separate attacks, including one that yielded some 105 million records, which would make it the largest single credential breaches known to date.

He said he believes the credentials were stolen in breaches that have yet to be publicly reported. The companies attacked may remain unaware until they are notified by third parties who find evidence of the hacking, he said.

“We have staff working around the clock to identify the victims,” he said.

He has not provided any information about the attacks to other cybersecurity firms or authorities but intends to alert the companies involved if his staff can identify them.

The massive trove of credentials includes user names, which are typically email addresses, and passwords that in most cases are in unencrypted text. Holden said that in contrast, the Adobe breach, which he uncovered in October 2013, yielded tens of millions of records that had encrypted passwords, which made it more difficult for hackers to use them.

The email addresses are from major providers such as AOL Inc, Google Inc, Microsoft Corp and Yahoo Inc and almost all Fortune 500 companies and nonprofit organizations. Holden said he alerted one major email provider that is a client, but he declined to identify the company, citing a nondisclosure agreement.

Heather Bearfield, who runs the cybersecurity practice for accounting firm Marcum LLP, said she had no information about the information that Hold Security uncovered but that it was plausible for hackers to obtain such a large amount of data because these breaches are on the rise.

She said hackers can do far more harm with stolen credentials than with stolen payment cards, particularly when people use the same login and password for multiple accounts.

“They can get access to your actual bank account. That is huge,” Bearfield said. “That is not necessarily recoverable funds.”

After recent payment-card data breaches, including one at U.S. retailer Target, credit card companies stressed that consumers bear little risk because they are refunded rapidly for fraud losses.

Wade Baker, a data breach investigator with Verizon Communications Inc, said that the number of attacks targeting payment cards through point-of-sales systems peaked in 2011. That was partly because banks and retailers have gotten better at identifying that type of breach and quickly moving to prevent crooks from making fraudulent transactions, he said.

In addition to the 360 million credentials, the criminals are selling some 1.25 billion email addresses, which would be of interest to spammers, Hold Security said in a statement on its website.

 

ADVERTISEMENT

ADVERTISEMENT
Just in:
German Job Market Resilience Bodes Well for Economic Recovery // Universal Language for Healthcare: General Authority Embraces Global Coding System // TUMI Hosts Global Launch Event in Singapore to Unveil Women’s Asra Collection and Announce Global Ambassador, Mun Ka Young // Experience Ultimate Shopping Freedom at 4.4 Shopee Spree: Don’t Worry, Shop Shopee! // Renewables Surge Sets Record, But Global Equity Lags // Emirates Post Speeds Up Deliveries for GCC with Special Day // Infineon and HD Korea Shipbuilding & Offshore Engineering jointly develop ship electrification technology // Andertoons by Mark Anderson for Thu, 28 Mar 2024 // Ingdan Announces 2023 Annual Results // Lisboeta Macau’s world first LINE FRIENDS PRESENTS CASA DE AMIGO and BROWN & FRIENDS CAFE & BISTRO has officially opened // Sunshine’s Debut Features Leave Tech World Scratching Its Head // Samsung Partners National Heritage Board to Bring a Slice of Singapore’s Cultural Heritage to Samsung The Frame TV // Global Audience to Witness Thrill of Dubai World Cup // Konica Minolta is named ASEAN 2023 Market Leader in Colour Light and Mid Digital Production Printers // US reiterates concern over Kejriwal arrest, Cong accounts // Meta Earth Official Website Launch: The Pioneer Explorer in the Modular Public Blockchain Domain // Court Sides with Coinbase on Wallet Service, But Staking Program Remains in Limbo // First-Ever Fortune Innovation Forum Draws Top Global Leaders to Hong Kong, Promoting Agendas On Collective Cross-Sector Advancement // Sharjah Chamber Breaks Ground on Final Expansion with New HQ Pact // AI Boost for Galaxy Devices: Samsung Expands One UI 6.1 Update //