While cybercriminals seem to be shying away from data theft to outright extortion as their main revenue source (cue in ransomware), stealing personal information and using or selling it for further cybercriminal acts is still a serious problem.
The latest “Data Breach Reports” by the Identity Theft Resource Center (ITRC) revealed that as of September 8, 2016, around 29 million records were exposed in 657 reported breaches. While the total is 16% less than the number of breaches recorded in 2015, personal data remains a prime cybercriminal underground commodity. The demand for stolen personal information was evident even in Trend Micro researchers' recent foray into the French underground. Stolen personal information, when sold, not only lines cybercriminals’ pockets, but can also be used to expose its owners (individuals and companies alike) to other risks.
Every cybercriminal underground market has a place where stolen data is sold. Any piece of personally identifiable information (PII), from credit card credentials to Groupon log-in data, that cybercriminals can get their hands on end up as underground offerings somewhere in the world.
The stolen PII calculator below shows how much cybercriminals gain from the data breach victims lose when their systems/devices get hacked.
Click each type of PII to see how much it is sold underground. Clicking more than one type adds up the prices.
As long as cybercriminals can profit from stolen information, individuals and companies will continue to suffer from breaches. Stricter implementation of cybercrime laws and better IT awareness can help. Trend Micro will continue to expose cybercrime and its perpetrators.
Like it? Add this infographic to your site:
1. Click on the box below. 2. Press Ctrl+A to select all. 3. Press Ctrl+C to copy. 4. Paste the code into your page (Ctrl+V).
Image will appear the same size as you see above.