In 2023, a startling revelation by Kaspersky Digital Footprint Intelligence uncovered that nearly 10 million devices worldwide were compromised by data-stealing malware, a situation that underscores the escalating cyber threat landscape. These infected devices were found to lose an average of 50.9 login credentials each, signifying a significant risk not just to individual consumers but also to businesses across the globe.
The cybersecurity firm’s analysis, based on infostealer malware log files traded in the digital underworld, highlights the .com domain as the most affected, with a staggering 326 million accounts compromised. It is followed by Brazil’s .br domain with 29 million, India’s .in with 8 million, Colombia’s .co with nearly 6 million, and Vietnam’s .vn with over 5.5 million compromised accounts. Notably, Malaysia’s .my domain saw 1.6 million accounts breached in 2023 alone.
This issue is not showing signs of slowing down. Despite a slight 9 percent decrease in the number of log-files – a proxy for the number of infections – from the previous year, the demand for stolen credentials remains unabated, with projections suggesting that the actual number of infections could surpass 16 million. This is attributed to the potential delayed release of stolen data onto the dark web, indicating a lag in detecting and understanding the full scope of these breaches.
Over the last five years, Kaspersky’s data points to the compromise of credentials from 443,000 websites globally, emphasizing the widespread nature of this threat. Cybercriminals utilize these stolen credentials for various malicious activities, including cyberattacks, or trade them on dark web forums and shadow Telegram channels. These credentials span a broad spectrum, from social media and online banking services to corporate online resources such as email and internal systems.
The data further reveals the global dispersion of this threat, with significant numbers of compromised accounts across different domain zones, pointing to the need for heightened cybersecurity measures across various regions.
In response to this escalating threat, Kaspersky has initiated efforts to combat the spread of data-stealing malware by launching a dedicated landing page aimed at raising awareness and providing strategies for mitigating the risks associated with these cyber threats. For individuals, the use of comprehensive security solutions is recommended to safeguard devices from infections and to alert users to potential dangers like suspicious sites or phishing emails, which often serve as initial vectors for malware infection. Businesses are encouraged to proactively monitor for leaks and advise users to change passwords promptly in the event of a compromise.
The ongoing battle against data-stealing malware requires vigilant and comprehensive cybersecurity measures to protect both personal and corporate data from falling into the hands of cybercriminals.