The data of people who want to obtain consumer loans in the Dom.RF bank is being sold on the Internet: scammers claim that they have 100,000 records of potential customers. He wrote that the reason for the leak was a loophole in the loan application. RBK.
The representative of the bank “Dom.RF” confirmed the fact of the leak: the leak was caused by a loophole in the initial application for a cash loan submitted remotely. “As part of the operational work, within a short period of time, all systems of the bank were operating normally, thus eliminating this situation. For precautionary purposes, the security service of Dom.RF Bank checked all other banking systems and did not disclose Any violations,” he said, emphasizing that the data does not allow access to customer accounts. The bank’s call center operator stated that you can apply for a cash loan through the website or by phone. The Bank of Russia is checking the leak.
As shown in the message, the file contains 104,800 records. The first date is February 2020, and the last date is March 2021. The record can contain the potential loan amount, phone number and email address (fill in at least one application form), or a full set of personal data required to apply for a loan: full name, date of birth, number and type of loan (consumer), phone number Number, email address, passport data, TIN, SNILS, home address, address of work place, position, income amount and information about authorized person (name, phone number), who is the borrower, etc.) and other information. In the announcement to be reviewed, a record of a database member was released, which contained a set of almost complete data.
RBC is familiar with ten database samples of customer records, which contain a complete or almost complete set of data. Six people answered the phone, and four confirmed that they had applied for a loan from the “Dom.RF” bank or were already existing customers. Two of them explained that they had applied for a few days ago, and the other two confirmed other personal information (name, contact number, home address or work location) from the document and refused to talk about their loan application.
According to the seller, the cost of the complete database is 100,000 rubles. The price of a separate line including 2021 data is 15 rubles, 10 rubles in the second half of 2020, and 7 rubles in the first half of 2020. According to a representative of the bank, the attacker may obtain information with unconfirmed data from the initial application, making it impossible to access customer accounts and manipulate funds.
He emphasized that this is the first time a fraudster has managed to partially access the bank’s external application. At the same time, the accounting system of the credit institution has not leaked, nor has it threatened the security of the account. The banking service “plans to carry out work to prevent data dissemination.”
Fraudsters can use the full set of data to deceive and mislead bank customers, and process loans remotely for individuals without knowing small banks, various credit cooperatives and microfinance organizations. At the same time, it is difficult to prove that the loan was issued by the criminal and not by the person whose personal data leaked into the network, and there is no effective legal mechanism to rule out such illegal behavior. . In order to eliminate the risk of fraudulent registration, it is recommended that victims change their passports and apply to the police station or the prosecutor’s office to initiate criminal proceedings for the fact of data leakage.
In early 2021, InfoWatch analysts said that by 2020, the personal data and payment information records of approximately 100 million Russians will be leaked to the Internet. According to experts, 80% of personal data breaches in Russia are due to the actions of employees of companies and financial institutions: during the crisis, bad bank managers, mobile operators and other employees sold confidential information.
According to InfoWatch estimates, the proportion of leaks related to Russian man-made operations has increased by about three-quarters in a year. At the same time, the total number of data leaks in Russia in 2020 has increased slightly, while worldwide it has fallen by 3-5%.
The company explained this dynamic with the fact that due to the coronavirus pandemic, a large part of the leaked personal data ended up in the “gray area” (due to employees switching to remote work, the security system did not record the leak).
The report also said that the biggest data breach in the past year was the Whisper social network leak, with approximately 900 million entries in the public domain. In second place is the Chinese Weibo service Weibo, which lost 538 million records due to hacker attacks; followed by cosmetics company Estee Lauder, which mistakenly left 440 million records with customer data in the public domain. entry.
At the beginning of December 2020, personal data of Muscovites known to have been infected with the coronavirus were leaked. In the public domain, a data list containing 300,000 Muscovites infected with the coronavirus was found. The database contains names, addresses and confidential medical information. Similarly, the data on the 1C server and the key used to connect to the coronavirus patient registration system were also leaked to the network.