All the credentials from data leaks, hacks, fishing, and so on that have been resulting for many years now have been sold on the “dark side” of Internet for Cyber Criminals. This will enable these evil people to use the credentials in large scale attacks. They can target big institutes, private organizations and governments’ official.
As according to Digital Shadows, a new type of popularity has gained in the market. The credentials are not sold one time, but according to CaaS or combolists-as-a-service model. The services provide access to constantly updated list of credentials. Users get connected to the service through subscription. Such services do not allow users purchase separate lists. They have to automate this process.
Researchers found that CrackedTO underground forum promotes the DataSence service –a cloud provider of databases and credentials sets. The bases of the service were constantly compiled and updated by attackers.
“It’s not exactly confirmed which lists are available through the advertised service, since you first need to pay for the subscription and register through the datasense [.] Pw site. But messages from [service providers] imply that he offers credentials from Amazon, Electronic Arts Origin, Ubisoft uPlay, Netflixand Steam”, – the researchers wrote.
$50 is a charge for monthly subscription to the DataSense service for the Cyber Criminals who can pay the sum via using Paypal, BItcoin, DASH, Etherium and other form cryptocurrencies.
Another example of CaaS service provider is DatabaseHub accessed after purchasing a token from Shoppy’s e-commerce platform. A token gives right to create up to 5 lists a day which on the calculation for a month that is 30 day is approximately equal to 100,000-300,000 credentials.