Identity theft

[Carding]

Identity theft means the illegal use of someone else's personal data for profit. Recently, there has been a surge in interest in crimes of this kind, which is associated with an increase in the number of remote services that do not require the user's personal presence, such as paying for purchases in online stores using bank cards or payment systems. The second important factor is the proliferation of social networks, where confidential information is posted in the public domain. Attackers use the collected data to carry out attacks, cheat, send spam, create doubles of famous personalities and other people to damage the victim's reputation.

Classification and methods of identity theft

There are several types of identity theft.

1. Financial frauds differ in the methods used and in the form of receipt of funds. Criminals can steal databases with user data for subsequent resale, use the information obtained to produce fake documents in order to obtain loans and make purchases in someone else's name. There are known cases of hacking of pages on social networks or the creation of clones, after which messages were sent on behalf of the victim to friends with a request to send money to the details specified by the scammers.
2. Identity theft has similarities with the previous option: here, too, there is the receipt of documents on the data provided by fraudsters (for example, in the United States, theft of a social security number allows you to get medical assistance, which will be paid from the victim's insurance account). Then attackers commit various illegal actions on behalf of someone else, as a result of which law-abiding citizens may face lawsuits or fines.
3. Identity theft. This method is used by persons hiding from creditors or other types of persecutors, illegal immigrants. It also includes those who wish to remain anonymous for any reason. 4. Theft of medical data is used by criminals mainly for the purchase of drugs that can only be dispensed with a doctor's prescription (for example, containing narcotic substances).
5. Creation of clones. Often, third parties create fake actors, musicians or athletes on social media to use the famous name for their own purposes.

Who can fall victim to identity theft?

It is believed that any person can become the object of identity theft. The increase in the number of such crimes is due to the presence of databases, which contain detailed information on millions of users. Attackers can obtain the information they need using malicious programs that easily spread over the Internet.

The following categories of persons are most likely to become a victim of such a crime:

• Active users of the latest gadgets and other modern technologies. The criminals have learned to obtain the necessary information from ATMs and other devices remotely using special devices.
• Internet users who neglect antivirus software. In this scenario, attackers have the opportunity to inject malicious applications into the operating system that transmit information about entered characters from the keyboard, screenshots, etc. in an unknown direction, including the details of payment systems.
• Users of social networks who are in many communities and are actively in correspondence with friends and strangers, which greatly simplifies the collection of the required information.
• People who filled out questionnaires for admission to study or work, participation in various actions; by hacking or stealing the relevant databases, criminals gain access to confidential information.

Source of threat

Experts identify several ways by which attackers can gain opportunities for illegal actions to steal an identity:

• Hacking and stealing databases from government agencies, medical and educational institutions, acquiring databases from other hackers.
• Physical theft of documents, bank cards or checks.
• Recovery of personal data from hard drives and other electronic storage media not properly prepared for disposal or sale.
• Theft or forgery of fingerprints, voices, and other biometric data.
• Obtaining information from social networks or other open sources, including resumes on job search exchanges.
• Infecting devices with malware to obtain the desired information of varying degrees of confidentiality.

Risk analysis

Several dozen major information leaks occur each year, allowing attackers to obtain significant amounts of data. For example, in the United States, medical records are stolen every year. The rest falls on smaller thefts of profiles of job seekers or participants in various promotions, as well as isolated attacks, which, unfortunately, are not generally recorded. In general, the growth in the number of such crimes is associated with the development of information technologies in a particular region.

In 2020, more than forty large leaks were detected, which is double the results of the previous year. Each such incident resulted in the publication of more than ten million records, and as a result, these large leaks accounted for 94.6% of all compromised data. The following guidelines can reduce your risk:

• Protect your personal data. You should not fill out detailed questionnaires in questionable institutions or to participate in any promotions.
• Take care of copies of your documents.
• Install antivirus software on your computer and update it regularly. This will make it harder for attackers to gain access to user files.
• Use complex passwords to log into social networks, electronic payment systems and other important services.
• Do not indicate your home and work address in social media accounts, do not post personal photographs, bank card details (oddly enough, many violate this rule), details of future vacations and information that could help an attacker find passwords for valuable accounts.
• If you find signs of a crime, contact the law enforcement agencies.

Following these instructions will minimize the risks of identity theft through your own fault.

 

[Carding 4 Carders]

7 ways to strengthen your digital security and prevent identity theft​

Although people are already better aware of possible identity fraud and minimize the damage, it is better if you can prevent possible consequences from the very beginning.
By protecting your computer data at home, online, and when traveling, you can eliminate many opportunities for identity fraud.

1. Use strong pincodes and passwords
Your pins and passwords should not be something that could be easily guessed, even if attackers had the means to access your personal information.
Stay away from names, dates of birth, and addresses. if you use numbers or words that are familiar to you, hide them with hard-to-guess numbers or ciphers, such as the Vigenera cipher.

In addition, you can try free online tools that provide almost reliable, randomly generated passwords.
For example, you can use our online password generation tool.
Make sure that all passwords you use include both uppercase and lowercase letters, numbers, and various other characters such as asterisks or hyphens.
Do not use the same security password for multiple accounts.
All your security passwords must be unique, so that if one of them is compromised, the thief will not have access to other accounts.

2. Keep your pincodes and passwords safe
Never store security passwords or sensitive data in unencrypted form on your laptop or computer.
If you uploaded a "cheat sheet" with your login details, save it in encrypted form.
Make sure that your laptop or computer is also password protected.

3. Switch to two-factor authentication
Many popular social media platforms and email services allow you to log in using 2FA or two-factor authentication.
This particular enhanced security Protocol provides an additional key to verify your identity after entering your account details.
You usually get a message with a confirmation code that you need to enter.
Once you enter your code, you will be able to access your account on the site.
Thanks to two-factor authentication, a cybercriminal will not be able to access your accounts, even if they have received information about your account.
Whether you use 2FA or not, make sure that you correctly logged out of any site ( logged out) that you don't use – don't just close a tab or window in your Internet browser.

4. Set passwords for all devices
Regardless of whether you take your device out of your home, all devices must have passwords installed to ensure that the information cannot be used if someone takes possession of your device.

5. Protect your laptop or computer
Identity thieves use sophisticated tools or software, such as keyloggers or spyware, to obtain sensitive data.
A strong and frequently updated antispyware program, antivirus program, or firewall will provide you with most of the protection you need.

6. Beware of phishing
You may receive a seemingly secure and harmless email asking you to confirm certain details, such as your personal identification information, account number, or password.
Any email seeking such information should be an instant red flag for you.
The best solution in this case is to contact the service provider immediately and ask what is going on.

7. Protect your hard drive
Most Windows, Linux, and Apple-based systems have a special option that makes it easy to protect information on your hard drive.
Read our articles about data encryption.

Pay attention to the following point when transmitting information on the Internet.
You need to see a small, usually green, padlock icon to make sure that the site you are using is secure.