You have to pay for quality
Wednesday May 7, 2008 at 10:01 am CST
Posted by Francois Paget
The media frequently speaks about the underground economy and quote price ranges for various private goods available for sale. I recently read the trends were bearish, but let there be no misunderstanding about that, if the quality is here, the price will still be high. It is just like the price of food, you have the hard-discount and the luxury stores!!
With this post, I wish to be more precise regarding the data regarding the prices of some cybercriminal groups around the globe.
Last Friday morning in France, my investigations lead me to visit a site proposing top-quality data for a higher price than usual. But when we look at this data we understand that as everywhere, you have to pay for quality. The first offer concerned bank logons. As you can see in the following screenshot, pricing depends on available balance, bank organization and country. Additional information such as PIN and Transfer Passphrase are also given when necessary:
For such prices, the seller offers some guaranties. For example, the purchase is covered by replacement, if you are unable - within the 24 hours - to log into the account using the provided details.
The selling site also proposes US, Austria and Spanish credit cards with full information:
- ccnumber
- cvv2
- exp.date
- name
- adress
- city
- state/province
- zip/postal
- phone-number
- SSN(US Only)
- DL#
- MMN
It is also possible to purchase skimmers (for ATM machine) and “dump tracks” to create fake credit cards. Here too, cost is in touch with the quality:
Depending on the price, you can choose your bank among various lists; more than 900 choices for North America or European countries:
Many other offers are available like shop administrative area accesses (back end of an online store where all the customer details are stored – from Name, SSN, DOB, Address, Phone number to CC) or UK or Swiss Passport information:
And to convince prospective clients, the site offers some free data to demonstrate their know-how. I partially anonymized some of this data so I could provide an example. If you recognize yourself, do not hesitate to contact the police force so that they may institute legal proceedings.
May 8th, 2008 at 11:05 pm
[…] fr ungewhnlich hohe Preise anbot”, schrieb Francois Paget von den McAfee Avert Labs in einem Blogeintrag. “Wenn man sich die Daten allerdings genauer ansieht, versteht man, dass man fr Qualitt einfach […]
May 9th, 2008 at 3:02 am
[…] Francois gave a running commentary of the above diagram in his blog post: As you can see in the following screenshot, pricing depends on available balance, bank organization and country. Additional information such as PIN and Transfer Passphrase are also given when necessary. For such prices, the seller offers some guaranties. For example, the purchase is covered by replacement, if you are unable - within the 24 hours - to log into the account using the provided details. […]
May 9th, 2008 at 7:27 am
[…] the McAfee Avert Blog: I partially anonymized some of this data so I could provide an example. If you recognize yourself, […]
May 9th, 2008 at 8:44 am
[…] McAfee rechachiert hat, gibt es Bankdaten von Kunden für nur wenig Geld im Internet zu kaufen. Auch gibt es […]
May 9th, 2008 at 9:58 am
[…] Paget, an investigator at McAfee Avert Labs, has posted a detailed report on a site that gives us great insight into the emerging international market for identity […]
May 9th, 2008 at 11:34 am
Price is what you pay, value is what you get…
Nice work by Francois Paget (hattip Andrew Jaquith) pulling together underground economy’s willingness to pay up for quality Last Friday morning in France, my investigations lead me to visit a site proposing top-quality data for a higher price than us…
May 10th, 2008 at 3:36 am
[…] ungewöhnlich hohe Preise anbot”, schrieb Francois Paget von den McAfee Avert Labs in einem Blogeintrag. “Wenn man sich die Daten allerdings genauer ansieht, versteht man, dass man für Qualität […]
May 10th, 2008 at 5:42 am
Hi,
Pls publish the url where they are being sold. Then it would be easier to sell security to senior management
May 10th, 2008 at 7:20 am
Nice work … watch out for those Austrian kangaroos though, AU is australia
May 13th, 2008 at 7:22 am
[…] Zugangsdaten zu Bankkonten illegal gekauft werden können, ist nichts neues. Die Spezialisten von McAfee haben in ihrem Blog Preislisten für Bankzugangsdaten veröffentlicht. Je nach Kreditinstitut, Land und Kontostand […]
May 13th, 2008 at 11:51 am
If you really can also get PINs from underground websites and this can be proved at court, this could be very helpful to change german iurisdiction, which currently transfers the risk to the consumers, in case money has been stolen with a creditcard and entry of a correct PIN, assuming that the card holder somehow gave access to the PIN (eg. quote on the back of the card).
Is there a chance to post a link to such a underground website ?
DEUTSCH
Wenn man tatsächlich auch an die PINs kommt und dies vor Gericht dargestellt werden kann, gäbe es vielleicht endlich eine Chance für ein Umdenken in der deutschen Rechtsprechung, die immer wieder die Verbraucher im Regen stehen lässt, wenn mit einer Kreditkarte und Eingabe der richtigen PIN Geld abgehoben wurde.
Gibt es eine Möglichkeit hier einen Link zu einer solchen Site zu posten ?
May 15th, 2008 at 4:28 pm
[…] top-quality data for a higher price than usual,” wrote researcher Francois Paget, in the Avert Labs blog. “Additional information such as PIN and Transfer Pass-phrases are also given when necessary,” […]
May 23rd, 2008 at 9:53 am
[…] Paget of McAfee’s Avert Labs blog has shared a discovery about the prices going on different “quality” levels of data on […]
July 7th, 2008 at 3:11 pm
i would like to know more about this underground economy
can i know the websites or contacts for acquiring info
email me danstrauss@ureach.com