Online market selling Facebook, Amazon, Netflix and PayPal details of 2 million users for as little as 56p is shut down | The Sun

A CRIMINAL marketplace selling the stolen personal information of millions of people for as little as 56p has been taken down in an international crackdown.

The sting, led by the FBI and law enforcement agencies across 18 countries, took Genesis Market offline last night.


Users trying to access the site are now greeted with a page emblazoned with the investigation name Operation Cookie Monster.

The marketplace, one of the most significant of its kind in the world, had 80 million sets of credentials available for sale, affecting two million victims.

Details including online banking, Facebook, Amazon, PayPal and Netflix account information were up for sale alongside so-called digital fingerprints containing data from the victims' devices.

This enabled criminals to bypass online security checks by pretending to be the victim.

READ MORE ON SCAMS

Drivers warned over bus lane scam – make sure you’re not caught out

The travel scams that cost Brits thousands each year – and how to avoid them

Investigators from the UK's National Crime Agency (NCA) carried out a series of raids on Tuesday and arrested 19 suspected users of the site.

Globally about 120 people were arrested and more than 200 searches carried out.

The NCA estimates there were hundreds of users of the site in the UK, and that tens of thousands of British victims have been targeted.

Will Lyne, head of cyber intelligence for the NCA, said: "Genesis Market is one of the top criminal access marketplaces anywhere in the world.

Most read in The Sun

ry's the limit

Rylan Clark over the moon as he lands role in huge soap

TALK TO FRANK

Chelsea could name Lampard as caretaker with icon in crowd for Liverpool game

REAL BEAUTY

Stacey Solomon praised for showing natural body in bikini on family holiday

OUR NEW QUEEN

Camilla to be known as the Queen from the Coronation onwards

"Genesis Market is an enormous enabler of fraud and a range of other criminal activity online by facilitating that initial access to victims, which is a critical part of the business model in a whole range of nefarious activity."

The marketplace could be found using normal internet search engines, as well as on the dark web.

Users were offered step-by-step guides on how to buy stolen details, as well as how to use them for fraud.

Prices started from 70 cents US (56p) and went up to several hundreds of dollars, depending on the type of information available.

Rob Jones, director-general of the National Economic Crime Centre, said it was "very, very easy" for anyone to access Genesis Market to commit crime.

"This is the problem for us in the online world – you don't need to know a criminal to start," he said.

"So you can completely self-start and go looking for this and get everything you need to perpetrate a crime.

"And so that is why this is so damaging. You don't have to go and meet somebody, you don't have to go into a shadowy forum; you can get into it, pay your money, and then you've got the tools to commit a crime.

"And that's why it is so damaging, and it is very, very easy."

Businesses as well as individuals had their information sold on Genesis Market, which facilitated fraud; ransomware attacks – where hackers block access to data and demand payment to release it; sim-swapping, where mobile phone numbers are hijacked; and the theft of source code from companies.

NCA investigators have already set up spoof distributed denial-of-service sites, which bring down servers by flooding them with requests, to harvest the details of criminals, and may use similar tactics when it comes to fraud sites.

Mr Jones said: "Our approach to tackling the criminal marketplace is that cyber criminals won't know who they're interacting with and won't know for certain that they are dealing with a criminal.

Read More on The Sun

Love Island feud reignited as islanders brand co-star a ‘mean girl’

Our whole family work at Wetherspoons – here are the things we wish you knew

"And that could be a site that a partner or the NCA has access to and we're getting their credentials."

He added: "If you're a cyber criminal, you're not going to know whether we've got your credentials and whether you're going to get a knock on the door in the morning."

Source: Read Full Article