The United States has closed the SSNDOB internet marketplace. The personal data of 24 million people was sold here

Posted by


U.S. federal law enforcement agencies have abolished a group of websites that made more than $ 19 million by selling social security numbers and other personal information. The Ministry of Justice announced in a press release that the SSNDOB market had been operating for about ten years and contained about 24 million people in the United States.

SSNDOB administrators published marketplace ads on darkweb forums, provided customer support functions, and regularly monitored site activity, including tracking when buyers deposit money into their accounts. Customers could pay in cryptocurrencies, especially bitcoins.

The end of another illegal marketplace

The event was led by the US Treasury (IRS) and the Federal Bureau of Investigation (FBI) in close cooperation with the authorities in Cyprus and Latvia. The international operation focused on dismantling and seizing infrastructure. On Tuesday, June 7 “Orders for SSNDOB Marketplace domain name seizures (ssndob.ws, ssndob.vip, ssndob.club and blackjob.biz), effectively ending the website, “ stated in the notification.

“I appreciate the extensive work and cooperation of our domestic and international law enforcement partners that has brought this global system to a halt.” said US Attorney Roger Handberg. “Theft and misuse of personal data is not only criminal, but can have a catastrophic impact on individuals for many years to come.”

Security firm Chainalysis, which provides investigative software that links cryptocurrency transactions to real entities, said that “SSNDOB system for processing bitcoin payments has been active since April 2015” and “In more than 100,000 transactions bitcoins worth almost $ 22 million.

“Perhaps most interesting of all is the activity we see between SSNDOB and Joker’s Stash’s large darknet marketplace for stolen credit card information and other personal information, which closed in January 2021,” wrote Chainalysis. “Between December 2018 and June 2019, SSNDOB sent over $ 100,000 worth of bitcoins to Joker’s Stash, indicating that the two markets may have had some relationship, including a possible joint owner.”

Business with personal data

The confiscated domains are part of the same operation that journalist Brian Krebs described in detail nine years ago. He wrote in September 2013 that SSNDOB “Over the last two years, it has been promoted on underground cybercrime forums as a reliable and affordable service that customers can use to find social security numbers, dates of birth and more. personal information about any U.S. resident.

SSNDOB operators obtained some of the infiltration data from LexisNexis, Dun & Bradstreet and Kroll Background America. According to another Krebs report in 2013, hackers used data from SSNDOB to gain control of the Xbox Live accounts of some Microsoft employees.

As the security company Sophos noted in its report: “Social security number does not actively identify you”but “Knowing someone’s number (or equivalent personal identifier in your country) is a good starting point for identity thievesbecause it can often be combined with other personal data to pass an identity check “.



Source link

Leave a Reply

Your email address will not be published.