| 07 |
| Oct |
Article from Rik Ferguson
Filed under: Family Safety,Phishing,Underground Economy,data leakage | RSS 2.0 | TB | Tags: cybercrime, data loss, email, Phishing, security, spam | 6 Comments
In the news over the past couple of days, much has been made of the tens of thousands of stolen email account credentials that have been posted on publicly visible websites. There is no positive indication of how these accounts were obtained or really even whether they were obtained as a result of one single activity (such as a phishing or keylogging endeavour) or whether they are simply a collected list of stolen details.
So far details from Yahoo!, Hotmail, Gmail, AOL, Earthlink and Comcast among others have been posted online. The data has been simple lists of matched username and password pairs and did not appear to have been cleaned up or de-duped.
What is surprising is not really the amount of accounts affected, although current media reports may lead you to think otherwise. It is only the fact that so many were exposed publicly that is surprising. There is a thriving underground market in stolen email account credentials and the numbers of accounts for sale on any given day easily number over the 30,000 or so that have been exposed in this latest story. These accounts are valuable to scammers as emails coming from people you know and have in your address books are far more likely to be trusted and far less likely to end up in a spam folder. In what may or may not be a concidence, here is some spam I received from an email account belonging to a friend of mine just one day after this story broke.
Anyway, I thought I would go and have a quick look at just how much that account data was actually worth, I think you’ll be surprised. Using the current prices of one single vendor who has multiple tens of thousands of stolen accounts for sale, we can estimate the value of 10,000 hotmail account credentials at a measly $90 (US Dollars), that is of course applying the 10% discount that the vendor is offering for purchases of over 10k accounts.
Prices as at 7th October 2009
This is not a “massive phishing campaign” it is simply the ugly backside of online crime sticking out of the water for a second as they dive back into murkier depths.
If you have an email account and you are in the slightest bit unsure of things, why not go and change your password, after all, you do that regularly anyway don’t you?
If you want some free tools to help protect you in the future, then have a rummage around here http://free.antivirus.com/prevention-tools/
| 1 Cent « Erich sieht: Monday, 12. October 2009 um 9:30 am |
|
|
[...] E-Mail-Accounts, ein einzelner Account ist also ungefähr einen Cent wert: »Unterdessen rückt Rik Ferguson von Trend Micro den Vorfall in die richtige Perspektive. 10.000 gestohlene Account-Daten seien nichts [...] |
|
| Test za ugrožene račune | Programer: Monday, 12. October 2009 um 10:55 am |
|
|
[...] međuvremenu, Rik Ferguson u Trend Micro je stavio incident u perspektivi, objašnjavajući da je ukradeno 10.000 računa e-pošte nisu [...] |
|
| Comprueba si tu cuenta de email está entre las 10.000 robadas hace 2 semanas | Marketing en Internet: Monday, 12. October 2009 um 11:57 am |
|
|
[...] de Trend Micro quita importancia a este robo, ya que son habituales (ver entrada en su blog: “Stolen email accounts, 90 bucks and some Chinese spam”). El precio de 10.000 cuentas robadas en el mercado son de 90 dólares (con un descuento del [...] |
|
| Test für eventuell gehackte Hotmail,Yahoo oder Googleaccounts - eByteNet - Der Blog: Monday, 12. October 2009 um 7:57 pm |
|
|
[...] wären, alleine die Tatsache das diese im Internet veröffentlich wurden sei ungewöhnlich. HIER kann man den ganzen Eintrag lesen und Fotos von Seiten betrachten bei denen man noch 10% Rabatt [...] |
|
| Helix-E NSA » Test for compromised email accounts: Wednesday, 14. October 2009 um 3:58 am |
|
|
[...] Rik Ferguson of Trend Micro has put the incident into perspective, explaining that 10,000 stolen email accounts are nothing out [...] |
|
Thursday, 8. October 2009 um 7:10 pm
After almost having being duped by a phoney email from PayPal warning me about suspicious activity, I now don’t know what’s real and what’s fake.
This morning I received a very real looking email “offer” from Symantec for a FREE Norton Internet Security upgrade. I went to the Symantec site and found no similar offer. When I Googled the same wording, nothing came up as a free offer.
The email I received had my name on it but the sender was Norton from Symantec / Symantec[at]reply[dot]digitalriver[dot]com
The [at] reply part before the name made me think it could be a fake site.
There was a time when a fake/phishing email could be easily spotted. I think those days are over.