• TREND MICRO
  • ABOUT
Search:
  • Latest Posts
  • Categories
    • Android
    • AWS
    • Azure
    • Cloud
    • Compliance
    • Critical Infrastructure
    • Cybercrime
    • Encryption
    • Financial Services
    • Government
    • Hacks
    • Healthcare
    • Internet of Everything
    • Malware
    • Microsoft
    • Mobile Security
    • Network
    • Privacy
    • Ransomware
    • Security
    • Social Media
    • Small Business
    • Targeted Attacks
    • Trend Spotlight
    • Virtualization
    • Vulnerabilities
    • Web Security
    • Zero Day Initiative
    • Industry News
  • Our Experts
    • Ed Cabrera
    • Rik Ferguson
    • Greg Young
    • Mark Nunnikhoven
    • Jon Clay
    • William “Bill” Malik
  • Research
Home   »   Industry News   »   Current News   »   Cybercriminals selling PayPal accounts for personal gain

Cybercriminals selling PayPal accounts for personal gain

  • Posted on:October 10, 2011
  • Posted in:Current News, Cybercrime
  • Posted by:
    Trend Micro
0

Ecommerce has become a major industry during the past few decades. With more people connected to the Internet than ever, the opportunities for online retailers have exploded in recent years.

However, this huge potential has inevitably opened the door to more data security challenges, as cybercriminals and hackers are also taking advantage of online shopping habits to exploit vulnerabilities and make some extra money for themselves.

According to online security researcher Brian Krebs, PayPal has emerged as one of the most enticing ecommerce targets. Cybercriminals are not merely stealing personal information from PayPal and keeping it for themselves. Instead, that information is being sold on online forums for profit.

Krebs stated that the majority of PayPal accounts for sale were stolen through phishing attacks. He also speculated that a large portion were likely hijacked through password-stealing Trojans.

This could have a disastrous impact on the online shopping market. According to eBay, PayPal's parent computer, PayPal ended the second quarter of 2011 with more than 100 million active accounts and pulled in a net total of $28.7 billion in payments.

Krebs noted that many of these PayPal accounts are directly attached to the user's bank account, meaning cybercriminals could potentially use the information to withdraw funds from the user's savings or checking accounts. If consumers are not confident that their information is safe on PayPal, they may be unwilling to spend online, which could have serious implications for the economy.

The emergence of mobile ecommerce adds another complication to the matter. eBay anticipates it will see more than $3 billion in mobile payments in 2011, which is a significant increase from the $750 million last year. Furthermore, a study from G Data found that malware targeting mobile devices increased 273 percent in the first half of 2011.

Tablet users especially have shown an inclination to shop online. A recent Wall Street Journal report asserted that tablet users are more likely to make purchases online than smartphone or traditional PC users. Tablet users also tend to make bigger purchases – sometimes as much as 20 percent more than the average online shopper. As malware and other cyberthreats targeting these mobile devices continue to rise, the discussion of protecting tablets will need to take greater precedent.

According to a recent report from the World Retail Congress, global ecommerce sales are expected to grow by more than 10 percent between now and 2015. As this trend unfolds, both retailers and consumers must refine their data protection practices to ensure sensitive information stays out of the hands of those who would exploit it for personal gain.

Security News from SimplySecurity.com by Trend Micro

Related posts:

  1. Retail top target for cybercriminals last year
  2. Mobile malware to gain steam in 2013
  3. Hacking the grid: How cyber criminals can gain access to critical infrastructure
  4. Citi reveals more accounts affected in breach

Security Intelligence Blog

  • Our New Blog
  • How Unsecure gRPC Implementations Can Compromise APIs, Applications
  • XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits

Featured Authors

Ed Cabrera (Chief Cybersecurity Officer)
Ed Cabrera (Chief Cybersecurity Officer)
  • Ransomware is Still a Blight on Business
Greg Young (Vice President for Cybersecurity)
Greg Young (Vice President for Cybersecurity)
  • Not Just Good Security Products, But a Good Partner
Jon Clay (Global Threat Communications)
Jon Clay (Global Threat Communications)
  • This Week in Security News: Ransomware Gang is Raking in Tens of Millions of Dollars and Microsoft Patch Tuesday Update Fixes 17 Critical Bugs
Mark Nunnikhoven (Vice President, Cloud Research)
Mark Nunnikhoven (Vice President, Cloud Research)
  • Twitter Hacked in Bitcoin Scam
Rik Ferguson (VP, Security Research)
Rik Ferguson (VP, Security Research)
  • The Sky Has Already Fallen (you just haven’t seen the alert yet)
William
William "Bill" Malik (CISA VP Infrastructure Strategies)
  • Black Hat Trip Report – Trend Micro

Follow Us

Trend Micro In The News

  • Detected Cyber Threats Rose 20% to Exceed 62.6 Billion in 2020
  • Trend Micro Recognized on CRN Security 100 List
  • Trend Micro Reports Solid Results for Q4 and Fiscal Year 2020
  • Connected Cars Technology Vulnerable to Cyber Attacks
  • Trend Micro Asks Students How Their Relationship to the Internet Has Changed During COVID-19
  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © 2017 Trend Micro Incorporated. All rights reserved.