A recent analysis by Kaspersky of global phishing and scam campaigns has determined that 88% of attacks primarily aim to steal login credentials for online services. Cybercriminals group stolen usernames, passwords, and other personal data to build comprehensive digital profiles, facilitating large-scale targeted attacks against both individuals and organizations. Once obtained, credentials are typically compiled into databases and sold on dark web markets. Prices vary, starting from less than one dollar for access to general internet portals up to $105 for cryptocurrency platforms and $350 for online banking services. To a lesser extent, these threats also seek to collect personal data like names and addresses (9%) and banking card information (2%). The Kaspersky research shows that fraudulent pages send the stolen data via email, bots in messaging apps like Telegram, or attacker-controlled dashboards. Therefore, usernames, passwords, and phone numbers are verified and sold even long after the initial theft to facilitate account takeovers and targeted attacks. To mitigate phishing threats, Kaspersky recommends not trusting links or attachments from unknown senders and verifying the legitimacy of institutions directly. Using security solutions like Kaspersky Premium helps prevent these activities by analyzing fraudulent patterns in real time. Fabiano Tricarico, Consumer Product Director for the Americas at Kaspersky, explained that isolated data does not provide the long-term value that criminals seek. In case of compromised credentials, the company suggests changing passwords immediately to strong, unique combinations and informing contacts if messaging or social media accounts are affected. It is crucial to check that the website URL is correct and watch for spelling errors or suspicious visual inconsistencies before entering financial information. Likewise, it is advised to monitor bank transactions through official apps and enable multi-factor authentication whenever possible.
