Hacker’s Selling MD Info on the Dark Web

Dark-Web-crimeshoop

Doctor’s Fall Prey to Hackers

Cristal M Clark

Everything seems to be for sale these days in terms of one’s identity and worldwide, governments are unable to both prevent it, let alone stop it once the proverbial ball starts rolling.

dark-web-hackers-sell-doctor-information-crimeshop

In what some are calling a deeply disturbing new trend, hackers are selling the identities of doctors for $500 on the dark web. The hackers are obtaining all the details needed to pose as a medical professional by targeting, employees, hospitals and other healthcare organizations, which possess all of the highly valuable data. In case you are wondering about the employee bit; employees are every organizations biggest liability and some cases employees are sending information through non secured email channels, texts, WhatsApp, in public and the like. Case in point, Clinica here in Colorado has a rather rampant issue with its medical staff sharing patient records, which include doctor information, utilizing the likes of Gmail rather than its internal email system as reported by employee BB, who is stationed in Lafayette, CO. Then we have as we all should be very well aware of, the hacking into and holding hostage of networks, which of course contain virtually all the needed information. Hackers compromises the corporate network of a healthcare provider to find administrative paperwork that would support a forged doctor’s identity and patient information. A process that becomes even easier once hackers see staff sharing information through non-secured email like in the case of Clinica.

The cyber criminals are then able to use the stolen information to forge the identities of doctors in order to submit fraudulent insurance claims or obtain prescriptions for controlled drugs like opioids that will in turn be sold on the black market or on the streets.

Hackers-sell-doctor-information-clinica-crimeshop.jpg

Documents on sale include malpractice insurance documents, medical diplomas, board recommendations, medical doctor licenses, and DEA licenses. This was uncovered by researchers at cyber security firm Carbon Black, who tracked the shifting patterns of cyberattacks towards medical organizations as well as personal medical records and hacked health insurance company login information.

Tom Kellermann, chief cyber security officer at Carbon Black: “This is a relatively new trend, the price is warranted when you consider what can be done with the data. Cyber criminals can use this information to facilitate insurance fraud, as well as submit prescriptions for controlled substances like opioids. These can then be sold on the black market at a steep profit.”

This information is generally cheaper to obtain, with forged prescriptions costing between $10 and $120 on the dark web and insurance login information costing as little as $3.25 per record.

doctor-credentialing-crimeshop

The researchers called for “extreme vigilance” on the part of security teams working to protect healthcare institutions. Which is desperately needed, honestly. The employee who informed me about medical staff sending patient records through Gmail also took it upon himself to share sensitive patient information with me on multiple occasions, the fact that the CFO of the organization fell for an email scam costing the organization thousands, and the inner workings of the software that they utilize. This type of information sharing with anyone is a cybercriminals wet dream if you will.

The world however, as in our worlds governments need to make it easier for all individuals to change ones credentialing if you will once someone’s identity has been compromised, new identification numbers, new licenses, etc. because by default, by keeping all of that information the same and simply flagging it, you still allow for the crimes under which the original licenses, identification numbers were committed, to continue on.

Cristal M Clark

IOS users can find The Crime Shop on Apple News

@thecrimeshop on twitter

https://www.instagram.com/crimeshop.cc/?hl=en

And https://gab.ai/thecrimeshop

Cybercriminals Selling Socials Security Numbers of Babies on the Dark Web

Social-Security-card-for-sale-crimeshop.jpeg

Dark Web Offers Huge Tax Season Sale – Social Security Numbers of Newborns

If you have ever ventured onto the dark web two things jump out at you, it can be scary and you can pretty much find just about anything for sale on it.

The dark web even offers classes on how steal and sell an individual’s personal information.

TerbiumLabs_crimeshop

Researchers at Terbium Labs recently discovered an ad on the dark web offering to sell the social security numbers and mothers maiden name of babies for just $300 in bitcoin per child’s information.

social-security-numbers-for-sale

While the theft of a child’s information has never been anything new, this is the first time that researchers are seeing infant data for sale.

Once in hand the criminal can create a lifetime of debt for the child long before he/she is even close to 18.

What makes this incredibly frightening is that child identity theft can go on for years and no one would know, not the child or the child’s family.

dark-web-crimeshop

The truth here is that anything that is generated, created or developed on any type of software and then stored in any type of network, cloud or otherwise, is not secure.

And if anyone tells you that it is 100% secure, just know that the NSA’s so called air-gapped network was hacked once or twice in the not so recent past.

For anything digital, networks, servers and the like that has ever been created, so too has a way into all of them, regardless of it’s promised security.

Cristal M Clark

IOS users can find The Crime Shop on Apple News

@thecrimeshop on twitter

And https://gab.ai/thecrimeshop

Dark Web Intelligence Service

 

Dark-Web-Crimeshop.jpg

 

Recorded Future

Here’s something you don’t often hear about, a tech company just raised $25 million in a Series E fundraising venture.

 

recorded-future-crimeshop

 

Recorded Future just so happens to be a threat intelligence service that has a pretty unique niche if you will.

The firm monitors the dark web looking to find intel on up and coming cyber attacks as well as help to locate your stolen information should it have been stolen at some point in the cyber world.

 

TorBrowser.-crimeshop

 

If you don’t have any background on the dark web, we’ll just stick with the basics, it’s the place where criminals like to meet up at in the cyber world of course.

The dark web is more often than not difficult to navigate which is what makes Recorded Future so unique in what it does, they actually have found much better ways of navigating through the dark web and finding stuff than our own government does.

What’s more is now that they have raised this $25 million they can offer their services to more than just the government and financial sector.

Criminals utilize the dark web to plan cyber attacks, some use it to plan actual coordinated in person attacks, yes as in terror attacks, sadly a lot of stolen intel ends up on the dark web such as social security numbers, banking information, child porn, victims are more easily trafficked on the dark web.

And once all of that ends up on the dark web, it ends up being sold.

That does not always guarantee an arrest will be made however, sometimes tracking some of these guys down can prove even more difficult than actually navigating the dark web.

It is nice to see a company rising up however and attempting to do more about the dark web than our own government has been able to do the last 5+ years.

Cristal M Clark

IOS users can find The Crime Shop on Apple News

@thecrimeshop on twitter

And https://gab.ai/thecrimeshop