Expert Insight on BMW Customer Database for Sale on Dark Web

By   ISBuzz Team
Writer , Information Security Buzz | Jul 03, 2020 01:17 am PST

database of 384,319 BMW car owners in the U.K. is being offered for sale on an underground forum by the KelvinSecurity Team hacking group, according to KELA, a darknet threat intelligence firm, based in Tel Aviv.

Notify of
1 Expert Comment
Oldest Most Voted
Inline Feedbacks
View all comments
Ilia Kolochenko
Ilia Kolochenko , Founder and CEO
July 3, 2020 11:06 am

At ImmuniWeb, we\’re observing a rapid and uncontrolled proliferation of shadow and abandoned IT assets, spanning from unprotected cloud to vulnerable web applications with business-critical data. The situation is dramatically exacerbated by third-parties with privileged access to organizations’ data – exactly what has reportedly happened with BMW, when a supplier is to blame for the incident.

Why this is happening

Even though stolen credit card data is now becoming cheaper amid the pandemic, many methods of credit card use require physical activities and human presence, so are in fact costlier and riskier to implement amid COVID-19. The situation is, however, rather a temporary fluctuation than a long-term trend.

Against this background, attackers are shifting their malicious efforts to target other goods such as PII*. We should also expect skilled cybercriminals to attack organizations for their trade secrets and other types of intellectual property. Worse, some of such intrusions are never discovered or reported.

*Personally identifiable information (PII) is any data that could potentially identify a specific individual.

Last edited 3 years ago by Ilia Kolochenko

Recent Posts

Would love your thoughts, please comment.x