Report: Stolen cryptocurrency accounts sell for an average of $105 on the dark web.

PANews reported on December 29th that, according to Cryptopolitan, SecureList reports that stolen cryptocurrency accounts on the dark web fetch an average price of $105. These accounts are typically obtained through phishing attacks, with prices ranging from $60 to $400, depending on account age, balance, whether payment methods are linked, and the status of two-factor authentication. Stolen data primarily leaks from phishing pages through three channels: email, Telegram bots, or uploads to admin panels. Telegram, due to its real-time nature, disposable nature, and difficulty in tracing, has become the preferred channel for attackers. More organized attacks utilize admin panel frameworks, which can perform real-time statistics, automatically verify credentials, and manage data.

These stolen data (including exchange login information, wallet access permissions, fiat currency deposit and withdrawal accounts, etc.) are either resold in real time or enter resale channels. After being acquired in bulk, screened, verified, and merged by intermediaries, the data is ultimately resold to scammers on dark web forums or Telegram channels. The report points out that 88.5% of phishing attacks from January to September 2025 targeted the theft of account credentials.