Stolen card details now selling for 225% higher than in 2018

The cost of card “dumps”, digital copies of credit cards on the dark web, has increased by 225% over the past two years, according to new research.

The average price of payment card details on the dark web has increased from $12.44 to $26.50 since 2018, according to data released by cyber security firm Flashpoint.

According to Flashpoint’s Pricing Analysis: Dark Web Marketplaces 2020, there has been a price hike on stolen data and illicit cyber attack services for sale on dark web marketplaces (DWMs) across the board, with UK passports now selling for $3,500.

The research found that tools used by cyber criminals have also become more sophisticated in 2020, resulting in a price increase. DDoS attacks, in particular, have moved to a subscription model to give “customers” more hands-on support and customisation. DDoS-for-hire services have also peaked at an average of $100 per attack, up 370% since 2017.

There was a wide gap in the price of “Fullz” – a full package of personal data – from the EU, Asia, and the UK. In these regions, they were selling for an average of $860 per individual, while US Fullz sell for just $30 – $65.

Remote desktop protocol (RDP) server access is another highly sought after service, especially when paired with online payment accounts for quick and easy fraudulent transactions – these can command prices upwards of $575. US bank drops are also some of the pricier listings, costing around $530 when the bank account and routing numbers, along with additional linked accounts, are all sold together.

Tom Hoffman, VP and head of Intelligence at Flashpoint said that the pricing analysis conducted heading into 2021 illuminates some of the unique market dynamics and trends were seen throughout dark web marketplaces – “such as the long-tail effects of the global coronavirus pandemic and changes in buying and selling behaviour stemming from an increase in working from home and online shopping.”

See the original article here: ITPro