Millions of cookies leaked on the dark web are leaving Brits at risk of being hacked – as cybercriminals can use them to get around passwords.
Cookies are mostly known as an annoying but essential tool for browsing online.
However, they have become a key tool for hackers to steal data and gain access to sensitive systems.
Now, data released by cybersecurity firm NordVPN has revealed that 54 billion cookies have been leaked on the dark web, with 14 million from the UK.
The company’s cybersecurity advisor Adrianus Warmenhoven said: ‘Thanks to the cookie consent popups, we view cookies as a necessary, albeit annoying part of being online.
‘However, many don’t realise that if a hacker gets hold of your active cookies, they might not need to know any logins, passwords, and even MFA to overtake your accounts.’
Cookies are the only way for a device to know who is using it.
‘To put it simply, once the user logs in with a password and MFA, the server gives the user a cookie,’ says Mr Warmenhoven. ‘And the next time the same user comes back with this cookie, the server recognizes the cookie and knows that this user has already logged in – so there’s no need to ask for the same information again.’
This means if an active cookie is leaked online, an attacker could log into your account without a password or MFA.
And cookies can hold much more information than just a username and password.
People’s names, age, gender, locations, orientation and size are among the wealth of data cookies collect.
‘If you combine all of these details, you will get a very intimate picture of the user, which can allow for well-targeted scams or attacks,’ said Mr Warmenhoven.
From the 54 billion leaked cookies analysed, 17% were active – but that rose to 56% of the UK cookies.
More than 2.5 billion of the cookies were from Google, with another 692 million from YouTube and over 500 million came from Microsoft and Bing.
‘Cookies from such core accounts are particularly dangerous because they may be used to access further login details through, for example, password recovery, corporate systems, or SSO,’ said Mr Warmenhoven.
There were 154 million authentication and 37 million login cookies.
NordVPN also found that name, email, city, password and address were
the most common words found in the personal information category.
Around 12 different types of malware were used to steal the cookies, with almost 56% collected by Redline – an information stealer and keylogger.
However, Mr Warmenhoven also shared information on how to protect yourself from a cookie attack.
‘It’s a good idea to regularly delete cookies to minimise available data that can be stolen,’ he said. ‘Also, be aware of files you download and websites you visit – being vigilant can minimise your risk.’
MORE : Ex-Poundland boss dies of gunshot wound day after he was told to pay £19,000,000 fine
MORE : Grieving families robbed in ‘despicable’ funeral scam
MORE : Private jet and yachts seized as three arrested in £76,000,000 care home scam raid
Get your need-to-know
latest news, feel-good stories, analysis and more
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.