Perhaps unsurprisingly, it pays to be a cybercriminal these days.
For one, it’s a booming industry. Between 2008 and 2021, the FBI recorded a 207% increase in cybercrime reports, with losses hitting almost $7 billion last year.
Second, it has a low barrier to entry — in fact, it’s dirt cheap. The average price of compromised remote access credentials costs around five dollars, easily purchased on the dark web. Cybercriminals use these credentials to sneak their way into victim enterprise networks. In the report The Evolution of Cybercrime, we found over 75% of advertisements for malware and 91% for exploits are listed for under $10. By comparison, purchasing a popular malware kit in 2009 would have set a cybercriminal back $8,000.