The number of stolen browser cookies reached alarming levels in 2025: According to a recent analysis by NordVPN and NordStellar, nearly 94 billion cookies were stolen worldwide and offered for sale on the dark web, a 74% increase from the previous year.
What makes cookies so dangerous?
Cookies store information such as login credentials, language settings, and shopping carts to enhance the browsing experience. However, in the wrong hands, they can serve as digital keys to bypass security measures and steal identities. Cybercriminals use stolen cookies to gain access to user accounts without being detected.
Germany ranks among the top 20
In a global comparison, Germany ranks 19th out of 253 countries, with over 1.3 billion stolen cookies, more than 109 million of which are still active. These active cookies can be directly linked to real user activity and thus pose a significant security risk.
Malware as the main cause
The theft of these cookies was facilitated by 38 different malware variants, including well-known malicious programs such as Redline, Vidar, and LummaC2. These malware families are known for stealing login credentials, passwords, and other sensitive data. The number of malware variants used has more than tripled compared to the previous year, indicating the increasing sophistication of the attackers.
Protective measures for users
To protect yourself against cookie theft, experts recommend the following measures:
- Use strong, unique passwords
- Enable two-factor authentication
- Share personal information only with caution
- Avoid suspicious links and do not download unknown files
- Regularly deleting website data and updating devices
These simple steps can significantly reduce the risk of unauthorized access.