Why No More Leaks?

We are seeing more and more news reports about major data breaches in which millions of personal details are leaked. A global underground online economy provides easy access to the rogue trading of leaked login credentials of online accounts. Criminals use these login credentials to attempt to gain access to accounts of specific websites or apps. This is referred to as credential stuffing. If the login succeeds, an existing account can be taken over, after which products or services can be ordered in the name and at the expense of the account owner. Personal data and order history can also be collected to commit new offences.

Most of the victims are unaware that their login details are being traded. People tend to use the same password for various accounts for longer, presenting a lucrative and relatively easy way for criminals to commit offences. Consider your own situation: do you use a different password for each account?

The Safe Surfing website provides practical information with step-by-step explanations on safe surfing, such as information on using strong passwords

The police approach to cybercrime

In recent years, the police have seen a shift from "traditional" crimes like home burglary or street robbery to digital crime and cybercrime. Criminals are getting better and better at using the internet to commit offences. Online businesses with many account holders - e.g. web shops, internet service providers and online sharing platforms - experience many problems with the misuse of leaked login credentials and the resulting forms of crime. The police need to be innovative to fight this kind of crime effectively. The police have access to lists of login credentials obtained from criminal investigations and during police duties, for instance. This data forms the basis for the No More Leaks project.