The capacity of the black market data of banking customers exceeded 1 billion rublenita Solovyov | 30.01.2020
Analytical center “Garda Technology” (holding “Intellectual computer systems”) published the results of the analysis of the black market trade database of Russian banks. Past 2019
characterized by several large-scale data breaches of financial customers. In the open market appeared the base of financial institutions of the Crimea, there was a serious jump of the prices on these shadow
data. The capacity of the black market, the database of the banking sector, analysts have estimated more than $ 1 billion.
Source data and methodology
In the course of the study were analyzed
more than 350 listings database of banks and other financial institutions that found on the shadow shopping Internet sites and groups and social networks. Data posted by hackers
free or trapped there by the negligence of the owners, in calculation were not accepted.
Among the “paid” offers, which in 2019 were placed at the sites of the sellers, experts have identified 191 unique customer database of financial institutions in various configurations.
The report provides statistical data. Moreover, all owners of the compromised data Analytics “Garda Technology” signaled the leaks.
Victims of “shadow” business
In the past year to the public have been recorded from 70 064 796 customers 42 Russian financial institutions. A significant part of them constituted the base of the Federal scale as well as a base
regional divisions of banks. The most rare offers that are enjoying the highest demand, a database with regional sorting.
The number of sold databases of regional Bank branches unconditional “palm” was received in Moscow region (493 thousand records). In the TOP “leaders” also includes Altai (478 thousand records),
Nizhny Novgorod oblast of Samara (426 thousand records) and Leningrad oblast (355 thousand records), Crimea (11 million records).
Insiders are the main suppliers of illegal information
After analyzing information on the completeness of the data and interviewing the sellers, the authors of the study, we can conclude about the sources of the leaks.
The lion’s share of supply to the market of information – 91% of data accounted for by insiders, bankers, collaborating with vendors. They usually sell the database in xml format
the resulting unloading of the automated banking system (ABS) or an additional CRM software.
8% of the data supplied by the banks intermediaries – third-party lead generation services offering to write the application for the selection and receipt of proposals of banks or employees of banks working on promotions
or in mobile offices. The data provided by them – a list of names and contact information.
Share information obtained through the vulnerability of banking systems and hacking the database or other external actions, accounts for 1%. The collection of this data, as a rule, targeted, and focused on big-budget
customers. Databases contain a large number of personal and banking information, with which, the scammer can easily simulate the actions of the client and withdraw money from his Bank
accounts.
The eternal values of the black market: “fresh” discharge and VIP data
The cost sold the database of the banking sector depends on a number of factors: the prevalence of deals, completeness of data and their relevance.
Above all in the shadow market valued the unique base. For example, fresh discharge from ABS sold “in one hand”: the cost of a single record from a database varies from 5 to 2 000. Average
the cost of the unique data base for Bank – 334 000 30 000 user accounts.
Proven, replicable databases coming onto the market, usually re-sold EN masse. Here the value of one record, depending on the volume of purchases can reach 50 cents. When
this fresh database is the dynamics of pricing a replicate database depends to a lesser degree than completeness. For example, information about VIP-clients of the regional branch of a major
the Bank, with indication of passport details, card number and current balance, current, 4 years ago (for 2015), openly sold for 15-20 thousand rubles for a database of 20 000 records. For
the same money could buy “fresh” database of 300 000 payroll clients for 2018, but with only full names and phone numbers of customers.
However, the most complete data come across on the illicit market is extremely rare. The core data in the open market are Lida, personal data sufficient to establish a call.
As noted by the authors of the study, the market for BD credit and financial institutions shows continued positive momentum, explain a substantial excess of demand over supply. At
compared with the year 2016, DB skyrocketed in price. If in 2016 the maximum value of one record does not exceed 10 rubles, in 2019, it reaches up to 2 000.
The average quote for market in 2019 – 175 000 45 000 data of clients of financial organizations.
“Shock troops” of the illegal leaks
The validity and relevance of DB – is the critical questions for “shadow”. Trading platform as the official marketplace, are their registers of “honest” and “dishonest” sellers,
provide services to a “guarantor” and use other methods of dealing with “troublemakers”.
As the experts found out that over the past three years, the parameters of relevance sold data has changed markedly, and “freshened”. If in 2016 the main part of the DB hit the market with a lag of 2-3 years,
in 2019, the market is literally flooded merchants offering “fresh” upload of information. Such a change, experts associated primarily with the change of the scheme of sale of illegal
market. If 3-5 years ago in the role of sellers, most often, were the insiders, “merge” DB after leaving work, today engaged in selling mainly intermediaries that receive data
from several informants and protecting their anonymity.
However, the database for the year 2016, which account for about a third of the illegal market data financial institutions, still remain valid. The majority of users
“leaked” to the Network, for three years did not change any passport data or the account number and their financial status also remained approximately at the same level.
The pace of sales of shadow Bank data are growing at 25% per year
In 2019 the total value sold openly, database of financial organizations exceed 345 million rubles. However, as analysts estimated “Garda Technology”, the actual capacity of this market is 1 039 632
336 rubles. According to experts, the life cycle of the database does not ends with the sale. On average, publicly traded database to sell to various buyers three times. The number of sales
is limited due to the nature of the market. Used database can also be sold again at a discounted price or in array with other databases.
Compared with 2016, the market for informal trade bases of the banks increased by 76%. Such dynamics, for comparison, corresponds to the average rate of growth of digital services, cloud services and market
e-Commerce.
finances, safety
Journal: Journal IT-News [No. 02/2020], Subscription to magazines
