US law enforcement, working in coordination with authorities in Cyprus and Latvia, seized several domains from the SSNDOB marketplace, a venue for social security numbers (SSN) and date of birth (DOB) information that helped fuel the fraud ecosystem. According to the press release from the US Department of Justice, SSNDOB listed the personally identifiable information (PII) for some 24 million individuals in the United States and generated over $19 million in fraudulent revenue.
Role in cybercrime
SSNDOB shops helped fuel a number of types of fraud and cybercrime, like identity theft, synthetic identity fraud, and account takeover. While there may be various methods to obtain PII, including social engineering, it is likely easier and more convenient to purchase them from a “SSN/DOB” shop, such as the ones listed on the domains taken down by law enforcement.
After purchasing Social Security Numbers from the marketplace, for instance, cybercriminals could use the data for a variety of fraudulent activities, such as opening bank accounts, applying for lines of credit, or attempting to receive insurance payments, among other illicit activities.
Mitigate risk everywhere
Tracking threat actors and the spaces in which they operate is a key element to an effective threat intel program. Flashpoint intelligence helps our clients disrupt malicious activities across open source, social media, chat platforms, and illicit communities. Learn how we can help prevent fraud from markets like SSNDOB and the hundreds of other like-minded sites.