Your stolen account IDs could be worth up to thousands of pounds on various marketplaces online, new research has revealed.
Stolen credentials are listed for sale on marketplaces hiding on the dark web, with bank details commanding the highest price.
Cyber investigator Simon Migliano discovered that criminals are selling bank details, credit card information and login details for various online services as part of research for a BBC Watchdog episode.
Stolen credentials are listed on the dark web much like a regular product listing on eBay and have often been scooped by cyber criminals from data breaches or accidental leaks.
Migliano, who works as head of research at Top10VPN.com, said the prices for such details have increased by almost three times on average, compared to the start of the year.
This means that a person’s identity could potentially now be worth £2,400 – an increase of £1,600 from prices in February.
While bank and credit card information demands the highest price, criminals are also selling details for popular online services, including Netflix, Spotify and Airbnb.
Presenter Steph McGovern, who hosted the Watchdog Live episode said, “It seems mad that we’re walking round with a bounty on our heads, and we don’t know it.
“All of our details have their own value.”
How much is your information worth?
This is how much criminals charge for each piece of login information they have stolen from you, according to the research.
- Bank Accounts – £1,025.99
- Personal PayPal – £84.48
- Credit Cards – £32.74
- Spotify – £5.05
- Debit Cards – £45.92
- Uber – £8.90
- Amazon – £22.09
- Yahoo Email – £3.89
- British Airways – £133.55
- Morrisons – £15.95
- Scan of your Driver’s licence – £13.28
- Apple ID – £8.67
- eBay – £25.20
- Nectar – £7.02
- Facebook – £13.93
- Gmail – £4.48
- Netflix – £13.59
- Domino’s – £3.97
- Ocado – £4.27
- Deliveroo – £3.35
- Ryanair – £0.96
- Twitter – £1.54
- Skype – £0.76
- Tesco – £0.98
- AirBnB – £19.78
The most notable increases in price include login information for Airbnb, Facebook and PayPal, due to the scope of potential fraud that can be committed by scammers in possession of these accounts, the research found.
Speaking of the findings to the Metro, Migliano said, “Our personal data is being bought and sold every day on the dark web by criminals hoping to use it to commit identity theft and turn a profit by fraudulently opening lines of credit.
“Any set of log-in details can be valuable to an online fraudster. Everything from streaming services and social media to online shopping accounts can open the door to lucrative scams.
“And if you reuse passwords then a single hacked account can suddenly become dozens, giving fraudsters access to all the information they need to piece together your identity.
“Consumers should also be aware that the price tag on their data has surged in recent months following the shutdown of two major markets on the dark web and the subsequent squeeze on the availability of stolen personal info.
“Would-be scammers will be looking at hacked accounts and seeing dollar signs.”