惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Cyberwarzone
Cyberwarzone
F
Full Disclosure
V
Visual Studio Blog
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
有赞技术团队
有赞技术团队
J
Java Code Geeks
博客园 - 【当耐特】
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
博客园 - 叶小钗
L
LINUX DO - 最新话题
T
Threatpost
S
SegmentFault 最新的问题
Vercel News
Vercel News
云风的 BLOG
云风的 BLOG
C
Cyber Attacks, Cyber Crime and Cyber Security
Google DeepMind News
Google DeepMind News
Know Your Adversary
Know Your Adversary
S
Schneier on Security
V
Vulnerabilities – Threatpost
D
DataBreaches.Net
G
GRAHAM CLULEY
Latest news
Latest news
P
Privacy International News Feed
D
Darknet – Hacking Tools, Hacker News & Cyber Security
C
CXSECURITY Database RSS Feed - CXSecurity.com
Scott Helme
Scott Helme
L
Lohrmann on Cybersecurity
T
The Exploit Database - CXSecurity.com
Security Latest
Security Latest
G
Google Developers Blog
L
LangChain Blog
MyScale Blog
MyScale Blog
Project Zero
Project Zero
N
News and Events Feed by Topic
Hacker News - Newest:
Hacker News - Newest: "LLM"
大猫的无限游戏
大猫的无限游戏
P
Proofpoint News Feed
Blog — PlanetScale
Blog — PlanetScale
阮一峰的网络日志
阮一峰的网络日志
N
News | PayPal Newsroom
www.infosecurity-magazine.com
www.infosecurity-magazine.com
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
SecWiki News
SecWiki News
T
Tor Project blog
C
Check Point Blog
Google Online Security Blog
Google Online Security Blog
GbyAI
GbyAI
The Last Watchdog
The Last Watchdog
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
WordPress大学
WordPress大学

Check Point Blog

The State of Hybrid SASE: Built-In vs. Bolted-On - Check Point Blog AI Appreciation Day: Let's Be Honest About What We're Appreciating - Check Point Blog AI Security Is Never Finished: Building the Continuous Red Teaming Loop  - Check Point Blog AI Security Threats in 2026: Annual Insights from Check Point Research - Check Point Blog AI Agents are Only As Effective as Their Harness - Check Point Blog Email Agent Hijacking: The Hidden Threat That Breaks Post-Delivery Security - Check Point Blog How Check Point Email Security Stopped a Student Job Scam Before It Reached the Inbox - Check Point Blog Redefining the CISO Contract: From Securing the Business to Securely Doing Business - Check Point Blog A New Ransomware Leader Emerges as June 2026 Attack Volumes Climb Worldwide How Unified Policies Close Security Gaps - Check Point Blog Under Pressure: Insights from the 2026 Exposure Gap Report - Check Point Blog When AI Invents the Attack: Browser-Native Ransomware - Check Point Blog Check Point and the AWS European Sovereign Cloud: Securing Europe’s Digital Future - Check Point Blog Shadow AI Is Not a Tool Problem. It's a Timing Problem. - Check Point Blog AI Is Changing Cyber Careers. NICE 2026 Showed What Students Need Next - Check Point Blog 90% of the World's Businesses are SMEs and MSMEs and AI Is Reshaping Both Their Future and Their Risk - Check Point Blog Prevention Before the Inbox: Reading the Microsoft Defender Benchmark Report in Context - Check Point Blog ClickFix: The Attack That Turns Users Into Their Own Attackers - Check Point Blog From Prompt Testing to AI Red Teaming at Enterprise Scale - Check Point Blog AI Has Moved From Assistance to Action. Is Your Security Model Ready? AI Security Governance: How to Secure AI Agents, Copilots, and Autonomous AI in 2026 - Check Point Blog OpenAI Frontier AI Models Powering Check Point's Leading Cyber Security Solutions The Operational Reality of Zero Trust- And How You Can Change It - Check Point Blog Amazon Prime Day 2026: Bargains Begin June 23 — and So Do the Scams - Check Point Blog Securing AI Agent Behavior with Amazon Bedrock AgentCore and CheckPoint AI Security - Check Point Blog What Successful Exposure Management Deployments Had in Common in 2026 - Check Point Blog From Stars to Upvotes: The Fake Reputation Economy Behind a Crypto Clipboard Hijackers - Check Point Blog AI Red Teaming Makes the Unknowns Known - Check Point Blog Check Point and Illumio Expand Partnership to Secure Hybrid Environments - Check Point Blog The NCSC Patch Wave Is Coming. Do You Know Where Your Risk Lives? - Check Point Blog NCSC Warns of AI-Driven Patch Wave: Is Your Attack Surface Ready? Energy, Healthcare, and Finance: Why Midwest Industries Are Facing Surging Cyber Attacks - Check Point Blog Midwest Cyber Attacks Surge in 2026: Energy, Healthcare, and Finance Under Growing Threat Travel Phishing and Cyber Attacks are Surging in 2026, Growing 122% over the last 3 years. Here's What Cyber Criminals Are Actually Doing - Check Point Blog Travel Phishing Scams Surge 122%: How Cybercriminals Are Targeting Travelers in 2026 The AI Your Security Team Can’t See Is the One You Should Worry About Check Point Engage Public Sector 2026: AI Is the New Battlefield Check Point Joins OpenAI’s Trusted Access for Cyber Program and Daybreak Initiative When Your AI Agent’s Memory Becomes a Security Liability AI Agents Are Becoming Enterprise Workers. Who Secures Them? Global Cyber Attacks Ease in May 2026, But Ransomware Surges 48% As Threats Reorganize Security Advisory – Action Required – Active Exploitation of Check Point VPN Authentication Bypass (CVE-2026-50751) Fraud, Ransomware, and Fake Apps Are Already Targeting FIFA 2026 The AI Defense Plane: Securing the New Enterprise Execution Layer The Meta AI Account Recovery Incident Wasn’t Just a Chatbot Problem Check Point Lays the Groundwork for the Future of AI Factory Security with NVIDIA - Check Point Blog Check ... The 2026 U.S. Midterms Have a Cyber Problem, But it’s Not at the Ballot Box The Server Seizure That Affects Also Iran’s Cyber Operations The Autonomous Security Platform Built for Attacker Speed Check Point Frontier AI Models Readiness Program – Security Update 2026 Cloud Security Report: Why Traditional Network, Cloud, and Security Architecture Are Lagging Behind t ... AI Attacks Are No Longer Experimental: Key Findings from the March-April 2026 AI Threat Landscape - Check ... Protect GenAI Chatbots with Check Point WAF The Network Security Problem No One Could Solve – Until Now. Hacktivists, Ransomware, and a 124% Surge Across DACH The Case for a Vulnerability Operations Center Before the First Whistle: How Cyber Criminals Are Targeting World Cup 2026 - Check Point Blog World Cup 20 ... When the Ransomware Gang Gets Hacked: What the Gentlemen Leak Reveals About Modern Ransomware Risk - Check ... Cyber Threats Spike in April 2026 as Ransomware Expands and Attack Volumes Climb After Short-Lived Moderation Q1 2026 Ransomware Report: Fewer Groups, Higher Impact - Check Point Blog Resilient by Design: When the Network Itself Becomes the Target AI Threat Readiness: Defending Against Attacks Powered by Frontier AI Models Check Point Cyber Security Now Available Across All Levels of U.S. Government - Check Point Blog Check Poi ... VECT Ransomware: Why Paying Won’t Get Your Files Back Check Point WAF Leads Application Security-Validated by Frost & Sullivan Check Point WAF Leads Application ... From Access Control to Outcome Control: Securing AI Agents with Check Point and Google Cloud Experience AI-Powered Check Point Firewall at Google Cloud Next AI Finds Every Gap: How Many Can Your Network Survive? The Gentlemen RaaS Is Surging in 2026 The Phishing Paradox: The World’s Most Trusted Brands Are Cyber Criminals’ Entry Point of Choice World Quantum Day 2026: The Harvest Has Already Begun, Are You Prepared? Why Manufacturing Cyber Security is Becoming More Complex as Cyber Attacks Accelerate March 2026 Cyber Threat Report: Ransomware & GenAI Risk PS Private Training: Turning Cyber Complexity into Operational Control Tax Season 2026: How Cyber Criminals Are Preparing Their Attacks Months in Advance Claude Mythos Wake-Up Call: What AI Vulnerability Discovery Means for Cyber Defense Iran-nexus Password Spray Campaign Targeting Cloud Environments, with a Focus on the Middle East ROI of Hybrid Mesh Network Security (IDC Study 2026) Operation TrueChaos: TrueConf Zero‑Day Supply‑Chain Attack ChatGPT Data Leak (Fixed Feb 2026): Key Takeaways Spring Cleaning Has Arrived: Meet the New Check Point Portal Experience North America’s Cyber Security Threat Reality in 2026
World Password Day 2026: Why "Strong Passwords" Can’t Save You from AI, Infostealers, and the Telegram Underground - Check Point Blog
lizwu@checkpoint.com · 2026-05-07 · via Check Point Blog

As we recognize World Password Day in 2026, the traditional advice to “use a complex password with numbers and symbols” feels hopelessly outdated. Today, a 16-character password is useless if an infostealer malware extracts it directly from a browser cache, or if an employee willingly pastes it into an unmanaged AI chatbot.

Welcome to the real World Password Day 2026. Not the one where we remind you to add an exclamation mark to “Password123.” The one where we pull back the curtain on the global industrial marketplace that has quietly been built on the back of our collective password failures — a machinery that is now, for the first time, being turbocharged by artificial intelligence in ways that are fundamentally changing the rules of engagement.

The cyber threat landscape has rapidly evolved into an industrialized Cybercrime-as-a-Service (CaaS) economy fueled by Generative AI. Hackers are no longer breaking in—they are simply logging in.

To understand the modern identity-theft ecosystem, we need to look beyond the login screen and dive into the symbiotic relationship between the dark web, Telegram, and AI.

The Death of the “Strong Password” Illusion: The Underground Economy

The underground marketplace has experienced a massive platform shift. Traditional Dark Web forums are now primarily used to establish vendor credibility, while buyers are quickly funneled into private Telegram channels and automated bots for instant transactions. This shift has accelerated the speed at which stolen data is monetized.

So, how much is your digital life actually worth in 2026? Based on the 2025/2026 Dark Web Price Index by Privacy Affairs and DeepStrike, the market operates on pure supply and demand:

  • Entertainment & Socials: An oversupply of breach data has driven prices down. A hacked Facebook account sells for ~$45, while a Gmail account averages $60 to $65
  • Financials: Standard credit cards with CVVs go for $10 to $40, but verified online bank and high-balance crypto logins command premiums of $200 to $1,170+
  • Corporate Access: The most lucrative market belongs to Initial Access Brokers (IABs) offering direct entry into specific corporate networks (VPNs or RDPs). According to an Initial Access Brokers Report, average IAB baseline prices hovered around $2,700, but high-privilege administrative access has seen prices spike to over $113,000.

The scale of this underground economy is staggering.  Subscriptions to top-tier infostealer malware like LummaC2 or RedLine range from $100 to roughly $1,024 per month, making it cheaper than ever for novice cybercriminals to harvest millions of passwords.

The Password Epidemic: Credential Reuse & GenAI Data Leaks

The effectiveness of these stolen databases relies entirely on human psychology. Despite years of warnings, users persistently reuse passwords. 94% of passwords are being reused across two or more accounts. Data from Verizon’s 2025 Data Breach Investigations Report shows that only 3% of passwords meet NIST complexity requirements for password best practices. When one platform is breached, automated credential stuffing attacks instantly unlock user profiles across hundreds of other services.

But the biggest human element threat in 2026 isn’t just password reuse—it’s the accidental insider threat created by Generative AI. The world is currently witnessing an epidemic of employees inadvertently feeding corporate secrets directly into AI tools.

  • The GenAI Blind Spot: According to the LayerX Browser Security Report 2025, copy-pasting into browsers has surpassed file transfers as the top corporate data exfiltration vector. A massive 45% of employees actively use AI tools, and 77% of those users paste data directly into AI prompts which is unsafe. According to Check Point Research, for the month of March 2026, 1 in every 28 GenAI prompts submitted from enterprise environments posed a high risk of sensitive data leakage, impacting 91% of organisations that use GenAI tools regularly. An additional 17% of prompts contained potentially sensitive information.
  • The Shadow IT Risk: Even worse, 82% of these copy-paste actions happen via unmanaged, personal accounts according to the LayerX report, creating a massive blind spot.
  • The Fallout: What happens when those AI tools are compromised? Threat intelligence firm Group-IB reported that at least 225,000 sets of OpenAI/ChatGPT credentials were put up for sale on the dark web after being harvested by infostealers8.  When employees use personal devices infected with infostealers to log into AI tools with corporate credentials, the data loop is devastating.
Phishing 2.0: AI, Deepfakes, and the Impersonation Crisis

With AI lowering the barrier to entry, Phishing 2.0 has arrived. Personalized, AI-driven “Phishing-as-a-Service” kits are sold for under $100 a month on Telegram. The most common—and successful—trick remains the fake IT/HR password reset request or fraudulent VPN portal. AI ensures these lures are perfectly written, free of typos, and highly targeted.

Because of this sophistication, AI-generated phishing emails achieve staggering click rates of up to 54% (compared to roughly 12% for traditional phishing) according to a Brightside AI 2024 study.

But the threat has expanded beyond text:

  • The Cost of Deepfakes: Basic AI voice-cloning subscriptions cost mere dollars a month fueled by deepfake technology. According to Onfido’s Identity Fraud Report 2024, there has been a 3,000% increase in deepfakes
  • Executive Impersonation: High-level social engineering is wreaking havoc. It is incredibly common for cybercriminals to impersonate the head of IT or a C-suite executive to lure login credentials out of employees. A single deepfake video call cost engineering firm Arup $25.6 million. The attack involved a sophisticated multi-person video conference call featuring deepfaked, AI-generated likenesses of the company’s CFO and other senior executives. This case proved that complex, multimodal attacks are no longer theoretical — they are happening now, with catastrophic results
  • Deepfake Vishing :  Voice cloning can be created from as little as 3 seconds of audio, sharply increasing finance-team exposure to impersonation fraud. As Fortune reported in December 2025, voice cloning has crossed the “indistinguishable threshold” — meaning human listeners can no longer reliably distinguish cloned voices from authentic ones
The 2026 Defense Playbook

The timeline from a leaked password to a full-blown ransomware deployment is shrinking terrifyingly fast. According to Beazley Security (Q3 2025), 48% of ransomware attacks used stolen VPN credentials as the initial access vector. Yet, the IBM 2025 Cost of a Data Breach Report found that credential-based breaches take an agonizingly long 246 days on average to identify and contain.

In stark contrast, ransomware operators are moving at lightspeed. If your company takes weeks to detect a stolen credential, the battle is already lost.

We suggest some methods for organizations to defend themselves in 2026:

  1. Embrace Passwordless & FIDO2: The only true defense against phishing and infostealers is removing the password entirely. Transitioning to FIDO2 passkeys ensures that even if an employee is tricked into visiting a fake login page, there is no reusable credential to steal
  2. Implement Identity-Centric Zero Trust: Security teams must treat every authentication attempt with skepticism and combine Endpoint Detection and Response (EDR) with Identity Threat Detection and Response (ITDR) to correlate behavioral anomalies across both environments
  3. Control the AI Browser Vector: Traditional Data Loss Prevention (DLP) tools monitoring file transfers are obsolete if an employee simply hits “Ctrl+V” into ChatGPT. Enterprises must adopt enterprise browsers or browser security extensions to monitor, govern, and block sensitive data from being pasted into unauthorized GenAI chatbots
  4. Continuous Dark Web & Telegram Monitoring: Waiting for a breach notification is too late. Organizations need continuous threat intelligence monitoring to catch traded credentials before Initial Access Brokers can sell them to ransomware affiliates

Passwords were once the keys to the castle. Today, they are a liability heavily traded on the dark web. As we look ahead, the future of enterprise security relies on verifying behavior, not just a string of characters.