Stolen data of 600k Indians sold on bot markets, says study
Around five million people globally have had their data stolen and sold on the bot market till date, of which 600,000 are from India, making it the worst affected country, according to one of the world’s largest VPN service providers, NORDVPN.
Bot markets are used by hackers to sell stolen data from victims’ devices with bot malware.
The study by NORDVPN, of Lithuania’s Nord Security, said the stolen data included user logins, cookies, digital fingerprints, screenshots and other information, with the average price for the digital identity of a person pegged at ~490 ($5.95).
NORDVPN tracked data for the past four years, ever since bot markets were launched in 2018.
India has been dealing with cybersecurity concerns for a while. As recently as last month, multiple servers of the All India Institute of Medical Sciences (AIIMS), a central government hospital that caters to ministers, politicians and the general public, were infected on November 23, a senior police official told Reuters.
A week after the ransomware attack on AIIMS, the Indian Council of Medical Research faced around 6,000 hacking attempts within 24 hours on November 30, Times of India reported.
Indian cybersecurity rules have tightened only earlier this year, with the Indian Computer Emergency Response Team (CERT) requiring tech companies to report data breaches within six hours of noticing such incidents and to maintain IT and communications logs for six months.
Nordvpn’s study looked into three major bot markets — the Genesis market, the Russian Market, and 2Easy — and found stolen logins including those from Google, Microsoft and Facebook accounts.
“What makes bot markets different from other dark web markets is that they are able to get large amounts of data about one person in one place,” said Marijus Briedis, chief technology officer at NORDVPN.