In connection with the news about the theft of data from more than 100 thousand bank cards, another fraud scheme has appeared. The attackers took advantage of the situation and created fake sites to check information: whether the bank's client's card is in the database of the stolen ones. Information security specialists note that there is no single service for checking cards for theft. Therefore, sites that offer to check information about their compromise are themselves an element of stealing user data or finances.

But there is also a positive side to this issue. Positive Technologies information security expert Vadim Solovyov noted that card data that fell into public use is no longer of interest to the cyber-intruders who stole them. But they can be of interest to pseudo-call centers as a tool to steal money or be used to advertise personal services by conventional banks.

Vadim Solovyov Head of Information Security Threat Analysis Group Positive Technologies

“Bank cards that are leaked to the public no longer have direct financial value for attackers. The maximum that can be used from this information is the name of the owner and the name of the bank that owns the card. But even this data can be used in various fraudulent schemes. Recall last year, when Russians received massive calls from the "call centers" of banks.

Plus, banks can use the information received for marketing purposes. For example, in mailing lists to offer your services in a more personalized way.”

bbabo.Net