News Flash: Internet Accounts Sell For a Few Dollars

November 14, 2018

Blog

Cybersecurity firm outlines widespread availability of compromised usernames and passwords

Stolen account details for online entertainment services, such as Netflix and Spotify, are being sold on the black market for less than US$5 an account, according to an investigation by cybersecurity company Kaspersky Lab. In blog post, David Jacoby, a senior security researcher at Kaspersky, outlines how the widespread availability of stolen account details is driving down prices and even prompting some vendors to offer “lifetime warranties” so if one stolen account stops working, the buyer is given another for free.
The blog post explains that the most common way to steal account details is via phishing campaigns or by exploiting a web-related vulnerability, such as a SQL injection vulnerability. “The password dumps contain an email and password combination for the hacked services, but as we know most people reuse their passwords,” Jacoby writes. “So, even if a simple website has been hacked, the attackers might get access to accounts on other platforms by using the same email and password combination.”
He estimates that an individual’s “complete digital life” can be bought for less than US$50, adding: “We’re not talking about getting access to bank accounts, but you do get access to services where a credit card might be included such as Spotify, Netflix, Facebook and others.”

For more details, see the blog post on the Kapersky Lab web site

 

Back

Presentation: Identity Hangout Delivering Identity Services The first Identity Hangout: Delivering Identity Services on 5 December explored the value and commercial scalability of mobile-based identity services. The online event was targ...

Read more | See all Identity Resources

Presentations from M360 Series – Russia & CIS The 2018 GSMA Mobile 360 Series – Russia & CIS was a regionally-focused event drawing on global case studies for senior-level leaders from government & regulatory bodi...

Read more | See all Identity Resources

Presentations: Delivering Commercial Success Through Identity Services The GSMA Identity recently partnered with Turkcell to co-host an event in Istanbul which explored Turkey’s journey towards becoming the first Mobile Connect commercially su...

Read more | See all Identity Resources

Mobile Connect Workshop Presentations at MWCA Identity Seminar The seminar Mobile Connect Seminar: Reducing Fraud through Secure Authentication and ID Verification Services, brought together h wider mobile ecosystem aiming to prevent fraud b...

Read more | See all Identity Resources

Mobile Connect Workshop Presentation at Mobile 360 Digital Societies i The Mobile Connect workshop: Delivering commercial success through identity services attendees had the opportunity to learn the value and commercial scalability of mobile-based ...

Read more | See all Identity Resources

Distributed Ledger Technology, Blockchains and Identity: A Regulatory This paper provides an overview of the relevant regulations for the use of distributed ledger technologies (DLT) and blockchains for digital identity. Digital identity is the bas...

Read more | See all Identity Resources

Operators are Primed to Enable the Transition between Analogue and Dig Rikard Strid, CEO, Clayster Having worked alongside mobile network operators for many years, it is increasingly clear that they will play an increasingly vital role in the identi...

Read more | Visit Identity Blog

Fueling Digital Growth Through the Mobile Identity Ecosystem -Pierre Demarche, VP of Marketing & Product Management – TeleSign The digital landscape is one of constant and rapid evolution, fueled by new ideas and new technologies...

Read more | Visit Identity Blog

News Flash: German Regulator Seeks to Restrict Facebook Bundeskartellamt rules Facebook needs users’ consent to combine personal data from different services Germany’s federal cartel office has ruled that personal data collected b...

Read more | Visit Identity Blog

News Flash: Call for Consistent and Comprehensive Digital ID The Governor of the Bank of England makes case for robust digital identification A consistent and comprehensive approach to digital identification is key to unlocking many of the...

Read more | Visit Identity Blog

The Hitchhiker’s Guide to the Growing Pace of Identity Services in t David Pollington, Head of Service Access, Identity, GSMA There would be little sense in denying that, along with the major strides made in digital identity over the past year, th...

Read more | Visit Identity Blog

News Flash: Digital IDs Could Fuel Economic Growth Research suggests wider use of digital identification could lift GDP by up to 13% The extension of digital identification “to a large part of the population could unlock econom...

Read more | Visit Identity Blog

Identity at MWC19 Barcelona February 25, 2019 Identity is the bedrock on which all digital services depend and as such is central to this year’s Mobile World Congress. We invite you to join our events in Barcelona to h...

Read more | See all Identity Events

MWC19 Seminar – Mobile Connect: The Rise of Digital Identity February 25, 2019 This seminar will focus on the consolidation and growth of Mobile Connect as a successful identity service offered by the mobile operators around the globe. The seminar will c...

Read more | See all Identity Events

MWC19 Seminar – The Future of Digital Identity: From Revolutiona February 26, 2019 It’s been a tempestuous year in digital identity with major breaches hitting the press on an almost weekly basis. This seminar will look at some of the latest research in use...

Read more | See all Identity Events

Identity Hangout March 21, 2019 Join the second Identity Hangout to hear what’s new on the identity space. The GSMA Identity team will be joined by Andrew Tobin from Evernym to talk about this as well as disc...

Read more | See all Identity Events

Contact GSMA Legal Email Preference Centre Copyright © 2019 GSMA. GSM and the GSM Logo are registered and owned by the GSMA.