Expert Insight on BMW Customer Database for Sale on Dark Web

database of 384,319 BMW car owners in the U.K. is being offered for sale on an underground forum by the KelvinSecurity Team hacking group, according to KELA, a darknet threat intelligence firm, based in Tel Aviv.

Subscribe
Notify of
guest
1 Expert Comment
Most Voted
Newest Oldest
Inline Feedbacks
View all comments
Ilia Kolochenko
Ilia Kolochenko , Founder and CEO
InfoSec Expert
July 3, 2020 11:06 am

At ImmuniWeb, we\’re observing a rapid and uncontrolled proliferation of shadow and abandoned IT assets, spanning from unprotected cloud to vulnerable web applications with business-critical data. The situation is dramatically exacerbated by third-parties with privileged access to organizations’ data – exactly what has reportedly happened with BMW, when a supplier is to blame for the incident.

Why this is happening

Even though stolen credit card data is now becoming cheaper amid the pandemic, many methods of credit card use require physical activities and human presence, so are in fact costlier and riskier to implement amid COVID-19. The situation is, however, rather a temporary fluctuation than a long-term trend.

Against this background, attackers are shifting their malicious efforts to target other goods such as PII*. We should also expect skilled cybercriminals to attack organizations for their trade secrets and other types of intellectual property. Worse, some of such intrusions are never discovered or reported.

*Personally identifiable information (PII) is any data that could potentially identify a specific individual.

Last edited 2 years ago by Ilia Kolochenko
Information Security Buzz
1
0
Would love your thoughts, please comment.x
()
x