Dark Web Exposure: NordVPN Discovers over 546 Million South African Cookies
In a startling revelation, a recent investigation has uncovered a significant increase in the misuse of cookies by cybercriminals, posing a threat to online privacy and security worldwide. According to researchers, cookies are now being used to hijack sessions, steal identities, and bypass security measures.
The stolen cookies, numbering almost 94 billion, originated from users in 253 countries, with 546 million of them linked to South African users. South Africa ranks 35th out of these 253 countries in terms of leaked cookies, a finding by NordVPN's research.
The data harvesting operation utilised 38 different types of malware, more than triple the number identified last year. The most active malware strains were Redline (41.6 billion cookies), Vidar (10 billion), and LummaC2 (9 billion).
The stolen information often includes full names, email addresses, cities, passwords, and physical addresses, making it a goldmine for cybercriminals.
Adrianus Warmenhoven, a cybersecurity expert at NordVPN, emphasises that cookies are digital keys to personal information. He urges users to take immediate steps to protect their online data.
To reduce the risk of personal data theft through leaked cookies in South Africa, the most effective measures involve securing your online activity primarily through the use of a reliable VPN service like NordVPN. This service provides strong encryption, a strict no-logs policy, and features like kill switches and DNS leak protection, masking your IP address and encrypting data traffic.
In addition to using a VPN, it is crucial to enable browser security features such as clearing cookies regularly, disabling third-party cookies, and using secure/private browsing modes. Avoid untrusted networks and websites where cookie theft or session hijacking are more prevalent.
Implementing multi-factor authentication (MFA) on key online accounts is also essential to add a layer of security even if cookies or session data are compromised. Keeping software and browsers up to date ensures you have the latest security patches that reduce vulnerabilities exploited in cookie theft attacks.
Checking privacy settings on online accounts ensures that only trusted services have access to personal information. By following these steps, users can significantly reduce the risks associated with leaked cookies and safeguard their personal data.
NordVPN’s 2025 investigation underscores the importance of these steps to safeguard personal data, as the sharp rise in stolen browser cookies has led to increased risks of account takeovers and identity theft globally, including in South Africa.
[1] NordVPN's 2025 Investigation: https://nordvpn.com/blog/massive-malware-operation-stole-94-billion-cookies/ [2] How to Clear Cookies on Various Browsers: https://nordvpn.com/learn/tips/how-to-clear-cookies/ [4] What is AES-256 Encryption: https://nordvpn.com/learn/glossary/aes-256-encryption/
- The misuse of cookies by cybercriminals is a growing concern in the field of ICT, posing threats to online privacy and security worldwide.
- According to research, cookies are digital keys to personal information and are now being used by cybercriminals for dubious activities such as hijacking sessions, stealing identities, and bypassing security measures.
- In South Africa, the number of leaked cookies was 546 million, making it the 35th highest ranking country out of 253 in terms of leaked cookies, according to NordVPN's research.
- To safeguard personal data, cybersecurity expert Adrianus Warmenhoven urges users to take immediate steps, such as using a reliable VPN service like NordVPN, enabling browser security features, implementing multi-factor authentication, keeping software and browsers up to date, and checking privacy settings on online accounts.
- The importance of these steps in safeguarding personal data is emphasized by NordVPN's 2025 investigation, which has shown a sharp rise in stolen browser cookies leading to increased risks of account takeovers and identity theft, including in South Africa.
