Such data is usually used by fraudsters who call people from the “leaked” databases on behalf of the “bank security”, “law enforcement agencies”, etc. Attackers, using social engineering techniques, use customer information to deceive the customer in order to steal money from the bank account. According to the Central Bank, in the third quarter of 2021, fraudsters stole 3.2 billion rubles from Russian citizens. They made more than 256 thousand money transfers without the client’s consent, in 41% of cases they used social engineering methods.
Massive leaks are coming to an end
Read on RBC Pro
According to Hovhannisyan, the massive theft of data from banking and financial institutions is coming to an end: “Banks began to use DLP systems (technologies to prevent leakage of confidential information. – RBK), which, at the very least, intercept attempts to bulk upload client data. Scammers faced a shortage of such information last year and massively switched to scripts requiring only full name. and a telephone. ” This trend is associated with the effective work of regulators, law enforcement agencies, as well as with the strengthening of protection measures in the financial institutions themselves, said the chief expert of Kaspersky Lab Sergey Golovanov.
The number of Telegram channels that specialize in the sale of bank customers’ data is decreasing, but the total number of users and offers for sale has not changed significantly, says Stanislav Pavlunin, Vice President, Security Director of Post Bank. “One of the possible channels for obtaining this data is the compromise of the infrastructure of organizations – online stores or delivery services,” he adds.
Two large leaks (information about those wishing to take out loans in Sovcombank and Dom.RF bank) did not come from the bank itself, but from third-party services: an external call center and a remote application reception interface, recalls Oganesyan: “This can also be called one of trends of 2021, as banks are increasingly using marketing outsourcers, without extending their own information security requirements to them. “
In general, most often personal data leaks originate from online stores, says Vyacheslav Kasimov, director of the information security department of ICB: “Implementation of information security systems is a task that requires investment, and not all e-commerce players put it in the priority category. At the same time, social engineers only need to know the bins (the first six digits of the number) of the cards in order to understand which banks’ clients they communicate with, then the scripts are built in such a way as to gain trust in the person. “
Insiders who download databases now prefer to make larger amounts of money either by stealing from customer accounts or by providing a service to “break through” customer information. Bank security services are also struggling with the “breakthrough”, but so far they have not been able to stop it completely, continues Oganesyan. According to DLBI, the cost of banking breakdown in 2021 has grown by a record 4.3 times compared to last year. Thus, the cost of obtaining data on account transactions per month ranged from 15 thousand to 40 thousand rubles. depending on the bank. Such specific services have appeared, such as establishing the card / account number by the number of the linked phone or the identification of all the client’s phones linked to the cards / accounts according to his passport data. Services “breakout” have risen due to the work of regulators, law enforcement agencies and banks, said Golovanov from “Kaspersky Lab”.