Cybersecurity agency Resecurity reviews that cybercriminals are promoting stolen digital identities of Singaporeans on the Dark Web with costs beginning at $8. Researchers discovered quite a few situations of stolen identification info on Darkish Net and underground cyber crime platforms, together with the main Russian language market for stolen identities ‘XSS’.
Researchers famous that the variety of underground distributors promoting stolen identification information of Singapore residents in 2024 Q2 has elevated by 230% in comparison with 2023. The spike was recognized by metrics just like the sudden increment within the mentions of “Singpass” (Singapore Private Entry) on the Darkish Net.
“Our statistics present that ranging from April fifteenth, 2024, we now have registered a major enhance in information dumps with a major variety of data (from 10,000 and extra) being supplied by a number of actors this month.”
Resecurity
As per Rsecurity’s report shared with Hackread.com forward of publishing on Monday, all through Q1/Q2 2024, infostealers and social engineering methods remained a key reason behind Singpass accounts compromise, which will be exploited for cash laundering. In June 2024, Resecurity recovered over 2,377 compromised Singpass accounts from the Darkish Net and notified affected people.
Between October 2023 and June 2024, a number of underground distributors monetized stolen identification information, together with passports, identification playing cards (IC), and sanitized driving licenses. Furthermore, cybercriminals are promoting nationwide ID templates for Know Your Buyer (KYC) functions (passports, driving licenses, utility payments and banking statements), and providing providers to create cast paperwork, confirm accounts, and move KYC checks.
This implies undisclosed information breaches affecting Singapore residents, resulting in a surge in leaked KYC paperwork, primarily involving selfies, which the Singaporean authorities requires for verification functions.
Moreover, these Dark web platforms are promoting compromised entry to delicate information from crucial sectors reminiscent of healthcare, lending, e-commerce, and monetary platforms. Nonetheless, these malicious assaults don’t finish there. Researchers have additionally discovered proof of a number of rip-off teams focusing on residents by means of telemarketing or buyer help providers.
It’s regarding that the stolen information contains biometric info reminiscent of fingerprints and facial information, which will be illegally reused for cast paperwork, entry manipulation, and different malicious eventualities by cybercriminals. Utilizing Deep Fakes and AI-powered techniques, nation-state and overseas actors will want this information for intelligence gathering and infiltration actions.
Compromised digital identities expose Singaporeans to dangers like monetary loss, identification theft, and reputational injury. It’s, subsequently, essential they’re cautious of phishing makes an attempt, use multi-factor authentication (MFA), and keep knowledgeable on the most recent cybersecurity threats.
RELATED TOPICS
- Hackers Sell Fake Pegasus Spyware on Clearnet and Dark Web
- LastPass Dodges Deepfake Scam: CEO Impersonation Thwarted
- Employee Duped by AI-Generated CFO in $25.6M Deepfake Scam
- Thousands of Stolen AnyDesk Login Credentials Sold on Dark Web
- Deepfake Threat: $2 Deceptive Content Undermines Election Integrity
