- Joined
- May 15, 2016
- Messages
- 10,418
- Likes
- 2,620
- Points
- 1,730
The most valuable were the unique data from automated banking systems.
Experts from the Garda Technologies analytical center conducted an analysis of the shadow market for Russian banks' databases for 2019. Experts analyzed more than 350 advertisements for the sale of databases of financial organizations posted on clandestine trading floors and in special groups on social networks.
In the course of the study, the data on the customers of banks with leading positions in the ratings, as well as proposals from regional banks and microfinance organizations, were put up for sale.
In 2019, 70,064,796 clients of 42 financial institutions of Russia were on open sale, most of which were not tied to regions and cities. The average cost of information was about 175 thousand rubles. for 45 thousand data of customers of banks. The most valuable was the unique data from automated banking systems sold “in one hand”. The cost of one entry could vary from 5 rubles. up to 2 thousand rubles The worked out databases appeared on the underground market repeatedly and were sold in large quantities. The cost of one record from such a database was much lower and amounted to 0.5 rubles. and less.
As experts noted, information on VIP-clients of a large bank, indicating passport data, card numbers and the current balance on accounts relevant for 2015, was sold at 15-20 thousand rubles. for 20 thousand records, which is equivalent to a list of 300 thousand salary clients indicating only full name and phone number for 2018.
In recent years, the relevance of the data sold has also changed. If in 2016 the main part of the databases fell into the Network with a lag of 2-3 years, now now the most recent information is sold. According to experts, the sales scheme has changed - earlier the sellers were insiders who put up databases for sale after leaving work, and now in most cases intermediaries working with several informants are engaged in this.
91% of banking databases were provided by bank employees working with sellers, and 8% were provided by bank intermediaries (third-party services or bank employees working on promotions or in mobile offices). Such data was a list of names and contact details of persons interested in the services of the bank. 1% of information was obtained by attackers who exploited vulnerabilities in banking systems. Such information made it possible to simulate customer actions and withdraw money from bank accounts.
Experts from the Garda Technologies analytical center conducted an analysis of the shadow market for Russian banks' databases for 2019. Experts analyzed more than 350 advertisements for the sale of databases of financial organizations posted on clandestine trading floors and in special groups on social networks.
In the course of the study, the data on the customers of banks with leading positions in the ratings, as well as proposals from regional banks and microfinance organizations, were put up for sale.
In 2019, 70,064,796 clients of 42 financial institutions of Russia were on open sale, most of which were not tied to regions and cities. The average cost of information was about 175 thousand rubles. for 45 thousand data of customers of banks. The most valuable was the unique data from automated banking systems sold “in one hand”. The cost of one entry could vary from 5 rubles. up to 2 thousand rubles The worked out databases appeared on the underground market repeatedly and were sold in large quantities. The cost of one record from such a database was much lower and amounted to 0.5 rubles. and less.
As experts noted, information on VIP-clients of a large bank, indicating passport data, card numbers and the current balance on accounts relevant for 2015, was sold at 15-20 thousand rubles. for 20 thousand records, which is equivalent to a list of 300 thousand salary clients indicating only full name and phone number for 2018.
In recent years, the relevance of the data sold has also changed. If in 2016 the main part of the databases fell into the Network with a lag of 2-3 years, now now the most recent information is sold. According to experts, the sales scheme has changed - earlier the sellers were insiders who put up databases for sale after leaving work, and now in most cases intermediaries working with several informants are engaged in this.
91% of banking databases were provided by bank employees working with sellers, and 8% were provided by bank intermediaries (third-party services or bank employees working on promotions or in mobile offices). Such data was a list of names and contact details of persons interested in the services of the bank. 1% of information was obtained by attackers who exploited vulnerabilities in banking systems. Such information made it possible to simulate customer actions and withdraw money from bank accounts.