jasdooit

Kaspersky examined phishing and fraud campaigns detected between January and September 2025, discovering that 88.5% of global attacks aimed to steal login details for different online accounts.

Another 9.5% of the data was specific personal information like names, addresses, and birth dates, whereas 2% related to bank card details.

As per Kaspersky’s data, more than 38 million phishing links were accessed in Africa during the past year (between November 2024 and October 2025) – all of them identified and prevented by Kaspersky’s security systems.

Not all individuals apply protective measures to their devices, yet phishing continues to be one of the most common cyber threats, as attackers trick users into visiting counterfeit websites where they unknowingly provide their login details, personal data, or credit card information.

According to Kaspersky’s findings, the majority of phishing websites send stolen data through email, Telegram bots, or panels managed by attackers, prior to entering illegal resale markets.

Stolen data via phishing is seldom utilized just once; login details from various attacks are gathered into data collections and sold on dark web marketplaces, sometimes for as low as $50. Purchasers examine and confirm the information to determine if the accounts are still active and can be reused across different platforms.

As per Kaspersky’s Digital Footprint Intelligence, the average prices for 2025 varied between $0.90 for global internet sites and $105 for cryptocurrency platforms, reaching up to $350 for online banking access. Personal documents like passports or ID cards were typically sold for around $15 on average, with costs depending on factors such as account age, balance, connected payment methods, and security configurations.

As data sets become more comprehensive and integrated, malicious actors can create detailed digital profiles which might subsequently facilitate targeted attacks against executives, financial personnel, IT administrators, or individuals possessing valuable assets or sensitive documents.

Our study reveals that credentials make up almost 90% of phishing attacks. After being obtained, login information, passwords, phone numbers, and personal data are compiled, verified, and sold again, occasionally years following the original breach.

In conjunction with fresh data, even outdated credentials may facilitate account takeovers and focused attacks on both individuals and companies.

Using open-source intelligence and past data breaches, hackers can create highly targeted scams, transforming one-time victims into ongoing targets for identity theft, extortion, or financial deception,” noted Olga Altukhova, a senior web content analyst at Kaspersky.