Edition "Kommersant"Reported that at the end of July 2020, on unnamed hacker forums specializing in the sale of databases and organization of information leaks, the personal data of about a million drivers from Moscow and the Moscow region were put up for sale.
The dump contains: registration dates of cars, state registration marks, brands, models, years of manufacture, surnames, names and patronymics of owners, their phones and dates of birth, information about the registration region, VIN-code, series and number of the registration certificate and title. Moreover, the data is relevant at the end of 2019. The initial cost of the database is $ 1,500.
DeviceLock founder Ashot Oganesyan notes in his Telegram channel that he repeatedly wrote about this base last year. He recalled that this data has long been sold on the black market, and the price of one month ranges from 3,500 to 10,000 rubles. Hovhannisyan also believes that, judging by the nature of the data, this database belonged to a certain insurance company, and not to the traffic police.
“Judging by the combination of the data of the car, the owner and his mobile phone, the database was created for the sale of insurance policies,” says Hovhannisyan.
Pavel Myasoedov, partner and director of Intellectual Reserve, told Kommersant journalists that one line in a similar archive costs 6–300 rubles, depending on the amount of data contained. A whole such leak can cost about 1 bitcoin (more than 11,000 at the current rate). The specialist notes that such a database may be of interest to hijackers and fraudsters using social engineering.
“The victim can herself provide passwords, contact details, information about the card and the location of the car, considering that he is talking to a traffic police officer or a bank. Information about the location of the car is needed for those who want to steal a specific car model or make a duplicate car with identical numbers, which is needed for crimes, ”explains Myasoedov.
Kommersant notes that the State Duma is already thinking about toughening the responsibility for the dissemination of such information.
“Leaks from the Ministry of Internal Affairs occur regularly. This speaks, on the one hand, of a low degree of information security, and on the other hand, of a high level of corruption. My colleagues and I are working on changes to existing norms for the deliberately illegal use of such materials. Those who buy such databases should understand that they are committing a crime, the composition of which begins with downloading such databases, ”Alexander Khinshtein, chairman of the State Duma's Information Policy Committee, told reporters.