Why do scammers need personal data?

[rakhirhif8963]

In 2020, a dump backup copy of the MySQL database from the RZD Bonus website was leaked. The database, private RSA key, script with the specified path to the dump and authorization data fell into the hands of attackers. Data from 1.3 million RZD Bonus program accounts was also leaked, including client names, IP addresses, authorization parameters, email, logins and hashed passwords.

At the end of 2020, personal data of 300,000 Muscovites who had recovered from COVID-19 became publicly available. The leak was attributed to human error.

Usually, attackers do not belarus whatsapp data hunt for databases. The main goal of cybercriminals is finances, accounts, commercial espionage or an attack using ransomware (ransomware programs that encrypt data in order to obtain a ransom for the decryption password). The personal database is often given to the cybercriminal as a bonus.

The obtained data is used for fraud. Knowing them, it is easier for the attacker to gain a person's trust, obtain the missing information and get to the finances.

Another reason for leaking personal data is the desire to make money by selling the data or to harm a former employer.

Reasons for personal data leakage
As a rule, large organizations comply with security standards and technical requirements. Most incidents in them are not related to technology, but are caused by human error. Employees can “leak” data by mistake and negligence or maliciously. It is more difficult for attackers from outside to penetrate a large company, but a business of any size becomes a victim of a cyber attack.