An Adobe Hack Put 38 Million Users at Risk. Facebook: 6 Million. And LivingSocial Delivered 50 Million More to Cybercriminals’ Tender Mercies. But What Do These Thieves Do With Stolen Info?
Adobe 38,000,000; Facebook 6,000,000; and LivingSocial50,000,000.
Then there’s Evernote 50,000,000; Drupal.org 1,000,000; Twitter 250,000; AHMC Healthcare 729,000; Schnucks Markets 2,000,000; Washington Administrative Office of the Courts 1,160,000; Adventist Health System/Sunbelt 763,000; City of Akron, Ohio 30,000; Piedmont HealthCare 10,000; California Department of Social Services 144,000; Virginia Polytechnic Institute and State University 144,000; Department of Energy 53,000; Northrop Grumman 70,000; University of Delaware 74,000; St. Mary’s Bank 115,000; and Internal Revenue Service 100,000.
And the list goes on.
These numbers come from the Identity Theft Resource Center’s 2013 list of data breaches. And it will come as no surprise that the number one complaint filed with the Federal Trade Commission last year was for identity theft.
Okay, say a company has been hacked and data stolen using botnets, malware, Trojans, phishing, keylogging and any other nasty tools the bad guys can get their hands on. Exactly what do cyberthieves do with the names, driver’s license numbers, Social Security numbers, medical records, passwords, phone numbers, emails they’ve steal?
After a theft, hackers often sell credit card and identity data in online forums to any of the hundreds of fraud rings operating around the globe. Fraud rings can use the stolen data to rip off e-commerce and banking sites via a host of scams including account takeover, money transfer et al. If the cyberthieves’ scam includes stealing hard goods such as jewelry, they can sell those goods using knock-off sites and classified ads.
ThreatMetrix secures Web transactions against account takeover, payment fraud, identity spoofing, malware, and data breaches. The ThreatMetrix Global Trust Intelligence Network, which analyzes 500 million monthly transactions, provides context-based authentication and Web fraud prevention to help companies accelerate revenue, reduce costs and eliminate friction. ThreatMetrix protects more than 1,900 customers and 9,000 websites across a variety of industries, including financial services, enterprise, e-commerce, payments, social networks, government, and insurance. For more information, visit www.threatmetrix.com or call 1-408-200-5755.