Health insurance credentials raise the cost of identity theft kits on underground marketplaces

Dossiers with health insurance credentials and counterfeit insurance cards cost US$1,200 or more, Dell SecureWorks researchers said

Several underground marketplaces are offering full information packages for sale that contain verified health insurance credentials, bank account numbers, Social Security numbers and other personal information, along with counterfeit physical documents corresponding to the data.

The information packages are known as "fullz" among cybercriminals and cost around US$500 each if they include U.S. health insurance credentials, according to security researchers from Dell's SecureWorks subsidiary who identified several marketplaces where dossiers of this type are being sold.

"Fullz" usually contain full names, addresses, phone numbers, email addresses with corresponding passwords, dates of birth, Social Security numbers (SSNs), Employer ID Numbers (EINs), and financial data such as bank account information, including account and routing numbers, online banking credentials with varying degrees of completeness, or credit card information, including magnetic stripe data and associated PINs.

These information packages can also be accompanied by counterfeit physical documents including credit cards, drivers' license, insurance cards and more, in which case they are called "kitz," the Dell SecureWorks researchers said Monday in a blog post.

"Kitz" usually cost between $1,200 and $1,300, but additional fees of $100 to $500 can be added to expedite orders and to cover the escrow or wire transfer payment commissions, the researchers said.

When sold on their own, health insurance credentials cost $20 each and include the names of those covered by the plan, dates of birth, contract number, group number, type of plan -- individual or group, HMO/PPO, deductible and copay information -- and insurer contact information for customer service and filing claims. Health plans that have associated dental, vision or chiropractic plans cost $20 more each, the researchers said.

Based on computer network information and "tell-tale signs" in usage of the English language in communications, the SecureWorks researchers suspect that the people behind one of the major operations selling this type of information are located in the U.S.

Hackers will steal anything they can sell and health insurance credentials are becoming more valuable as the cost of health insurance and medical services continues to rise, said Don Jackson, senior security researcher with Dell SecureWorks' Counter Threat Unit in the blog post.

According to the company, its Incident Response Team investigated a possible cyber intrusion at a large healthcare firm earlier this year and found over 25 versions of a credential-stealing Trojan program called Gatak on the company's network.

In that particular case it was determined that hackers did not manage to steal any protected health, financial or personally identifiable information, the SecureWorks researchers said. However, other companies might not be as lucky.

Companies should install firewalls around their networks and Web applications, as well as intrusion prevention and detection systems (IPS/IDS) that inspect outbound and inbound traffic for known threats. On endpoints they should run host IPS, an advanced malware protection product and a vulnerability scanner, the researchers said.

Employees should be trained on how to avoid the primary infection vectors when using email and accessing the Web, and their email communications should be encrypted, they said.

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Lucian Constantin

IDG News Service
Topics: Dell SecureWorks, security, Identity fraud / theft, fraud, privacy, malware
Comments are now closed.

Latest News Articles

Most Popular Articles

Follow Us

GGG Evaluation Team

Kathy Cassidy

STYLISTIC Q702

First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.

Anthony Grifoni

STYLISTIC Q572

For work use, Microsoft Word and Excel programs pre-installed on the device are adequate for preparing short documents.

Steph Mundell

LIFEBOOK UH574

The Fujitsu LifeBook UH574 allowed for great mobility without being obnoxiously heavy or clunky. Its twelve hours of battery life did not disappoint.

Andrew Mitsi

STYLISTIC Q702

The screen was particularly good. It is bright and visible from most angles, however heat is an issue, particularly around the Windows button on the front, and on the back where the battery housing is located.

Simon Harriott

STYLISTIC Q702

My first impression after unboxing the Q702 is that it is a nice looking unit. Styling is somewhat minimalist but very effective. The tablet part, once detached, has a nice weight, and no buttons or switches are located in awkward or intrusive positions.

Resources

Best Deals on GoodGearGuide

Compare & Save

Deals powered by WhistleOut
WhistleOut

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?