A Growing Vulnerability in the Digital Age

A staggering 93.7 billion stolen cookies are currently available for purchase on the dark web and Telegram-based marketplaces, according to a recent breakdown by NordVPN. These cookies, which can be used to access sensitive data and bypass multi-factor authentication, pose a significant threat to online security.

Adrianus Warmenhoven, a cybersecurity advisor at NordVPN, warns that cookies may seem harmless, but in the wrong hands, they can be “digital keys to our most private information.” He notes that a stolen cookie can be just as dangerous as a password, and once intercepted, it can give hackers direct access to accounts containing sensitive data.

The vast majority of stolen cookies (90.25 percent) contain ID data, used to uniquely identify users and deliver targeted ads. However, aside from ID cookies, the other statistically significant type of data that these can contain are details of users’ sessions, which are generally seen as more of a concern. Over 1.2 billion of these are still up for grabs, and cybercriminals can use them to pose as others on web pages, authenticate into services without credentials, and bypass MFA.

Infostealer malware, such as Redline, Vidar, and LummaC2, are the most common ways for crooks to get hold of these cookies. Access to these malware strains is relatively affordable, with prices starting at $150 for the most basic tier of features. However, while the threat presented by stolen cookies is severe, it should be noted that if a user’s PC or organization is infected with infostealer malware, the threat it presents is arguably greater than the cookies.

To mitigate the threat of stolen cookies, NordVPN advises users to think twice before accepting cookies, and to reject unnecessary cookies, especially third-party ones or those tracking behavior. Keeping devices updated with the latest security fixes and cleaning up browser histories and purging unnecessary cookies are also good ideas. Additionally, users should always check the privacy settings on their online accounts to ensure they only share information with trusted services.

Moreover, experts recommend that individuals and organizations take proactive measures to protect themselves from cookie-related threats. This includes:

Implementing robust security protocols, such as two-factor authentication and encryption, to protect sensitive data

Regularly monitoring and cleaning up browser histories and purging unnecessary cookies

Keeping software and operating systems up to date with the latest security patches

Educating users about the risks associated with cookies and the importance of online security

By taking these steps, individuals and organizations can significantly reduce the risk of cookie-related threats and protect their sensitive data.