In today's real life, the public often receives calls from fraud gangs such as telecommunications fraud and online gambling, and many people are very confused: How do criminals know their personal information?
On November 8, a Red Star News reporter confirmed from the Danling County Public Security Bureau of Meishan City that with the support of the relevant departments of the Provincial Public Security Department, the Meishan Public Security Bureau successfully cracked the "5.11" extraordinarily large infringement of citizens' personal information after meticulous investigation, successfully broke a criminal chain of stealing citizens' personal information for illegal activities, smashed 6 criminal gangs that trafficked in citizens' personal information, arrested 104 criminal suspects, seized more than 600 million pieces of citizens' personal information, and involved more than 30 million yuan in funds.
The Red Star News reporter combed and found that the chain of the case is divided into three levels: the gang of "beating powder and draining the flow", the gang that sells citizens' personal information, and the criminal gang that leaks the source of citizens' personal information.
The relevant person in charge of the Danling County Public Security Bureau said that the case was the largest case of infringement of citizens' personal information since the founding of Meishan City, and the cracking of the case curbed the spread of "infringement of citizens' personal information" in Sichuan Province, and further deterred downstream telecommunications fraud and online gambling crimes.
Police took action to seize the items in question
The secret is out
The "mentor" is missing and the stock speculation APP is closed
Bring out criminal gangs that provide front-end services
In March 2021, the Danling County Public Security Bureau in Meishan City, Sichuan Province, received an alarm that he had been tricked by netizens into joining the stock speculation group and had purchased more than 100,000 yuan of shares under the guidance of the other party. As a result, when I wanted to withdraw money, I found that the stock trading APP was closed, and the "stock speculation" mentor disappeared.
Since the beginning of this year, the local police have received a number of similar reports, all of which are victims who have been lured to certain groups to carry out investment fraud, and have suffered heavy losses.
Meishan Public Security attaches great importance to the establishment of the "5.11 Infringement of Citizens' Personal Information" special case team to carry out investigation work, the same fraud methods of the case investigation, a criminal gang mainly hu Moumou specializing in providing front-end services for overseas fraud gangs gradually surfaced.
After preliminary investigation, Mr. Hu purchased a large amount of personal information of investment citizens on the Internet, and set up a so-called information consulting company to provide front-end "powder diversion" services for downstream cybercrime (such as calling the shareholders' phones, pulling the shareholders who intend to invest into the WeChat groups and QQ groups established in advance by the downstream criminal gangs according to the special words, providing accurate target groups for downstream crimes, and illegally profiting from them).
After research and judgment, Hu Moumou's criminal gang is only one of the branches of the criminal organization that "infringed on the public". The organization leases office space in Chengdu's bustling commercial real estate, sets up shell companies such as commerce and trade, information consulting, and network technology, pretends to be the staff of securities companies to "beat powder and divert flow", recommends customers to buy stocks through online live broadcasting, accepts a large number of orders on the internet, provides accurate target groups for criminal gangs such as downstream telecommunications fraud and online gambling, and illegally profits from them, involving many provinces and cities in the country and many cities and states in the province.
On May 17, 2021, the Meishan Municipal Public Security Bureau deployed in a unified manner, dispatched more than 300 police forces, formed an arrest team, and went to Chengdu, Sichuan, Anhui, Hubei, Shandong and other places to carry out network collection operations at the same time, arresting a total of 104 criminal suspects, taking 60 criminal compulsory measures, seizing 193 computers involved in the case, 227 mobile phones, and a number of telephone cards, involving more than 600 million pieces of citizens' personal information, and more than 30 million yuan of funds involved.
The police take down criminal gangs
Behind the "suction powder"
Listed shell companies made millions of dollars
Three layers of gangs provide precise targets for downstream
The information obtained by the Red Star News reporter shows that many people in the case are "post-90s", and have previously engaged in related work, after dispersing and then getting together to commit crimes, externally, they use routine fraud, to their families, they hide criminal acts, claiming to work in information companies, some people until the crime, the family does not know what they are doing.
The main culprit of the drainage gang, Hu Moumou, is a "post-90s" who only has a Chinese, in 2019, he got acquainted with Xiao Moumou and others, and listed a number of shell companies in an office building in Chengdu, recruiting a large number of employees to implement the "powder sucking" activity together.
According to the script and phone number provided by Mr. Hu, the employee pretended to be a securities and other company staff to make a call and invite others to add QQ friends, which is the so-called "sucking powder".
After sucking up the "powder", they then pulled the "stock speculation training QQ group" and "VIP combat Q group" established by the foreign fraud gang at a price ranging from 150 yuan to 200 yuan, and the overseas criminals carried out accurate fraud on the victims, and in a short period of time, Hu Moumou made millions of yuan in profits.
However, Hu Moumou, how do they know who will be willing to speculate in stocks?
The Red Star News reporter combed and found that the "5.11" extraordinarily large infringement of citizens' personal information case has obvious characteristics of the whole chain of crimes and a clear criminal hierarchy structure, which is divided into three levels: "powder and drainage" gangs, gangs that sell citizens' personal information, and criminal gangs that leak the source of citizens' personal information.
According to the police of the special case group, in the three-tier criminal gang, the most front-end is that Shen X and other hackers obtain the internal customer data of securities companies and other industries through network technology means such as infiltration, credential stuffing, and crawlers; "internal ghosts" such as Yang X, a staff member of the securities company and other industries, export the company's customer information for sale and then flow into the network.
The second layer is a gang that sells citizens' personal information, such as Zhang xx, Wang xx, Li xx, and Duan xx, who have long purchased citizens' personal information on the Internet and dark web forums, and then sold it at a higher price to the downline "powder diversion" gang to engage in illegal and criminal activities.
In this chain, Hu X and others are the third layer, they listed a number of shell companies in an office building in Chengdu, recruited a large number of employees, according to the script and telephone number provided by Hu X, pretended to be securities and other company staff to make calls, pulled the shareholders who intended to invest into the WeChat group and QQ group formed in advance, recommended customers to buy stocks according to the special language techniques, or indirectly provided accurate target groups for downstream wire fraud, online gambling and other criminal gangs.
Three-layer trajectory
The first layer: hackers and ghosts
Shen X and other hackers obtained the internal customer data of securities companies and other industries through network technical means such as infiltration, credential stuffing, and crawlers; "internal ghosts" such as Yang X, a staff member of the securities company and other industries, exported and sold the company's customer information and then flowed into the network.
The second layer: dark web forums
Zhang xxx, Wang xx, Li xx, Duan xx, and other gangs that sell citizens' personal information have long purchased citizens' personal information on the Internet and dark web forums, and then sold it at a higher price to the offline "powder diversion" gang to engage in illegal and criminal activities.
The third layer: shell companies
Hu X and others listed a number of shell companies in an office building in Chengdu, recruited a large number of employees, and according to the script and telephone number provided by Hu X, pretended to be the staff of securities and other companies to make phone calls, pulled the shareholders who intended to invest into the WeChat group and QQ group that had been set up in advance, recommended customers to buy stocks according to the special words, or indirectly provided accurate target groups for downstream criminal gangs such as wire fraud and online gambling.
The police seized the mobile phone involved in the case
The suspect used the Internet to obtain personal information
Where does "powder" come from?
Hackers hacked the database of securities companies
Inside ghost reselling customer information Dark Web Forum Buy...
In this case, the police seized more than 600 million pieces of citizens' personal information, where did the massive amount of personal information made by the criminal suspect come from?
After a police investigation, one of Hu's on-line is Shen, who uses hacking technology to develop credential stuffing software, extract valid user mobile phone numbers for target website vulnerabilities, illegally obtain citizens' personal information for sale, and also sell credential stuffing software.
Since 2020, it has developed more than 10 credential stuffing software and illegally obtained a large amount of citizens' personal information through credential stuffing. "He even sorts out the personal information that he obtains illegally, for example, where you want it or what type of information, and he will match it for you." Introduction of the civilian police of the special case team.
In addition, some of the internal staff of the relevant companies have a large amount of personal information of citizens in the industry. In order to illegally obtain benefits, individual employees not only do not fulfill their obligations to protect the security of citizens' personal information, but instead become "internal ghosts" and steal and sell citizens' personal information in their hands. For example, Yang X, Li X, Chen X and others who worked in a securities company used the convenience of their work to export and sell the company's customer information.
According to the police, there is also a way to obtain citizens' personal information is to buy it on dark web forums. After investigation, Zhang XX, one of the upper lines of Hu XX, has sold a large number of citizens' personal information on dark web forums since 2019, and has bought and sold millions of citizens' personal information so far.
At present, the relevant criminal suspects have been transferred for prosecution, and the case is still under further investigation.
Zhou Lu Red Star News reporter Jiang Lin pictured according to Danling Public Security
Edited by Wang He
(Download Red Star News, there are prizes for the newspaper!) )