Credit cards, bank accounts, medical records - how much does it cost on the black market?
How much is our data really worth? This question is extremely valid in the present times, when cybercriminals are hunting not only for financial institutions, but also for personal data of average citizens. Delving into the world of stolen personal information, we find a wide range of prices depending on the source of their origin, type of data or their volume. Fortinet experts indicate how much they can cost such data on the black market.
At the beginning it is worth noting that criminals stealing financial data face three main problems: the scale of fraud detection, the speed at which they are discovered by law enforcement agencies and the ongoing monitoring of suspicious activity on the Internet. In addition, there are problems regarding the longevity of the stolen information. This mainly applies to credit card numbers, PIN codes and bank account information.
Of course, banks are interested in reducing the cost of fraud as part of the accounts they serve. In addition, most banks offer alerts about credit card fraud. Many people have separate cards for business and personal purposes that can be issued by different banks. Details about each card purchase come as a notification to your mobile phone, usually within a few seconds of completing the transaction. To remain competitive, banks must keep up with the market, regulators and consumer trends. Fraud detection is a competitive advantage from the point of view of cost and customer confidence.
Credit card numbers
Important card numbers can be purchased for about half a dollar. If the credit card has a name, PIN and other important information, then according to the Fortinet analysis, its price may increase to 2-2.5 dollars.
Bank accounts are a bit more difficult to quote. In general, it can be assumed that the value of a valid bank account with attached login details varies depending on the amount accumulated on it. Last year, a person in the prison was charged $ 10 for selling data from one account. These accounts had balances of between 100 and 500 dollars, so the withdrawals (if they were made) were relatively high compared to the investment.
For accounts with funds over $ 20,000, the price increased to $ 70 in exchange for full login credentials. Again, this is information coming from an individual arrested for running such an illegal business.
Basic information about bank accounts does not cost much. There are even those for which you have to pay less than one dollar.
This case is much more interesting because medical records have a higher value than the more common types of financial information. Currently, they cost between $ 10 to $ 20 for a record, and information about their value is more widely available and more accurate compared to price information for a bank account.
Theft of Yahoo! user data in 2013, it was probably the biggest one in history, or at least the biggest one we know about. According to various reports, hackers gained about one billion data. Each of the three copies of the entire stolen set was sold for 300,000 dollars.
Cybercriminals' methods are becoming more and more sophisticated. They know that medical records are extremely valuable and the health care sector remains extremely sensitive. Where other sectors, such as financial services, have made significant investments in security, health services are still lagging behind. In this situation, as Fortinet experts point out, the cybercriminal business model of trading access data to bank accounts and credit cards is becoming a domain of amateurs and criminals with little imagination.
Learn more about our offer
We use Google Cloud Translation and Gengo API’s to translate articles with exception of our comparative tests.