According to one of the biggest VPN service providers in the world, NordVPN, almost five million people have had their data stolen and sold on the bot market to date, with 6 lakh of those victims being from India, making it the worst impacted nation.
Hackers sell stolen data from victims' devices using bot malware on bot marketplaces.
According to a research by NordVPN conducted by Lithuania's Nord Security, the stolen data included user logins, cookies, digital fingerprints, screenshots, and other details. The average cost of a person's digital identity was estimated to be Rs. 490.
Since the start of bot marketplaces in 2018, NordVPN has been collecting data.
India has always dealt with issues related to cyber security. A senior police source informed Reuters that on November 23, many servers at the All India Institute of Medical Sciences (AIIMS), a federal government institution that serves ministers, legislators, and the general public, were infected.
The Indian Council of Medical Research (ICMR) had close to 6,000 hacking attempts in less than 24 hours on November 30, according to a report in the Times of India, one week after the ransomware attack on AIIMS.
Indian cybersecurity regulations have just recently become more stringent. The Indian Computer Emergency Response Team (CERT) now mandates that IT businesses disclose data breaches within six hours of becoming aware of them and keep six-month records of their IT and communications activities.
The Genesis market, the Russian Market, and 2Easy were the three largest bot markets examined by NordVPN. Stolen logins from Google, Microsoft, and Facebook accounts were among those discovered.
According to Marijus Briedis, chief technical officer of NordVPN, "what makes bot marketplaces distinct from other dark web markets is that they are able to gather massive volumes of data on one individual in one spot."
And after the bot is purchased, the seller assures the customer that the victim's data will be updated so long as the device is under the bot's control
In their investigation, NordVPN's researchers discovered 667 million cookies, 81,000 digital fingerprints, 5,38,000 auto-fill forms, a large number of device screenshots, and camera pictures.