Pages:
Author

Topic: A KYC database sold on the Darkweb ? - page 5. (Read 18845 times)

legendary
Activity: 1638
Merit: 1163
Where is my ring of blades...
January 25, 2019, 04:57:37 AM
#62
I participated in many ICOs that requires a KYC. After I readyour post, i feel nervous because I realized that our identity is not safe anymore. There are a lot of buying and selling of identities so it is now not safe to give our identities in excahnges and ICOs.

that is your own fault though because you were blinded by greed!
there simply has never been any reason whatsoever for an ICO to ask for KYC. Know Your Customer laws only apply to things that are regulated and want to follow the regulatory laws. no ICO in the whole world has ever been regulated. in fact they are illegal in most parts of the world!
that leaves only one reason for asking KYC, and that is to sell it and make more profit.
full member
Activity: 481
Merit: 100
January 25, 2019, 04:52:13 AM
#61
Hacked Customer Data From World Leading Cryptocurrency Exchanges For Sale On The Dark Web?

https://www.ccn.com/hacked-customer-data-from-world-leading-cryptocurrency-exchanges-for-sale-on-the-dark-web/

"On a darknet market called “Dread,” a vendor going by “ExploitDOT” is attempting to sell user data from the know-your-customer (KYC) data top cryptocurrency exchanges ask for, required by most jurisdictions.

According to data shared with CCN, the hacker has an ad that has been online since July 2018, in which he claims to have hacked documents used in KYC checks – including identity cards and drivers’ licenses – from users of top exchanges like Bittrex, Poloniex, Bitfinex, and Binance.

The data is seemingly for sale for $10 per 100 documents or more, with discounts applying for those who buy in bulk, all the way up to $1 per 1,000 for an order of over 25,000. CCN was able to independently verify the ad on the dark web, which is still online. No links to it will be added to avoid promoting the service."



A few days ago, this also made news :

https://www.techspot.com/news/78317-leaked-database-exposes-87gb-emails-passwords.html
We cannot do something because KYC is part of the  regulations. If we want to protect our identity, then we should not upload our I.D.s in the internet. There are now many rumors that the identity of the KYC participants are been using by other person.  So we shoul be careful on all of our decisions.
full member
Activity: 528
Merit: 100
January 25, 2019, 04:38:07 AM
#60
I participated in many ICOs that requires a KYC. After I readyour post, i feel nervous because I realized that our identity is not safe anymore. There are a lot of buying and selling of identities so it is now not safe to give our identities in excahnges and ICOs.
copper member
Activity: 266
Merit: 2
Ako Bayot!
January 25, 2019, 03:33:35 AM
#59
Oh no our private personal details were being compromised that could be resulted to hacking things from us. Anyway, I am not afraid of it because I am poor and they had nothing to take away from me. The problem is now more on the rich people that could get a threat to their life after the KYC details has been compromised.
member
Activity: 454
Merit: 13
January 25, 2019, 03:28:22 AM
#58
this really scary but i can tell there no credential with the vendor .. its also a other way to scam other who wanted  people information .. when i contact them for credit card information .. they will take your money and give you fake info ...  if they have binanace info they will rather login people account to steal their asset rather than selling information to people ...  so i will call this scam !!!  

It's a possibility yes.
There is no confirmation that this database actually exists. Some exchanges like Binance or Poloniex are mentioned so if this is all true, we have much bigger concerns here, like losing our funds.
This is incredibly bad news, especially if it is true. A lot of people upload documents that confirm their identity but also input personal data like date of birth, place of birth, address, and more, and all of this can easily be used to steal people's identity, which would be extremely serious.
legendary
Activity: 3136
Merit: 1172
Leading Crypto Sports Betting & Casino Platform
January 25, 2019, 02:49:25 AM
#57
All those KYC papers are most likely from some of all the free ETH based airdrop coins, people have submitted KYC to get, most of those scam airdrops didn’t even happened, but suspect people have guarded ten of thousand of KYC from airdrop bounty hunters.
I guess some people have re used the same picture the used when they got approved at their exchanges. And those few pictures are now being used to sell the KYC database as an exchange hack.



Well KYC documents can be used for very wrong purposes or if I say, they can be used for criminal purposes. That's why I do not give my KYC to ordinary ICO sites as I have no grantee that they will not mis use it. On the other hand, it is the responsibility of the exchanges to keep our KYC documents safe as it contains very sensitive information about the users.
copper member
Activity: 39
Merit: 10
January 25, 2019, 12:54:53 AM
#56
I would only trust a company like coinbase with my information. I would trust no other exchange with my identification scans.
legendary
Activity: 3542
Merit: 1965
Leading Crypto Sports Betting & Casino Platform
January 25, 2019, 12:34:20 AM
#55
The bigger problem with this is that this same information can be used to signup for other services that require these documents. The money launders and criminals can siphon their dirty money through these services and it will be traced back to these victims. They will not even know that this information was compromised and they will have a difficult time, explaining this to the authorities.  Angry

Centralised services are known for lots of exploits and weaknesses, from corruption from within these services and software with huge flaws.  Angry
legendary
Activity: 3472
Merit: 10611
January 25, 2019, 12:33:14 AM
#54
any KYC related document that you have ever given an ICO or will give in the future is going to be sold on the darweb not because it is hacked but because the ICO owners want to make more money and THEY sell it there.
any KYC related documents that you give exchanges has a high possibility of being sold on the darkweb because of the same reason as ICOs but also because exchanges are known to be hacked left and right. specially since many of them are scammy like Bittrex, they will do the selling themselves. that is why they ask for it in first place.
sr. member
Activity: 1036
Merit: 281
January 25, 2019, 12:14:28 AM
#53
That is the disadvantage of the KYC, we cannot ensure that our identity will be safe. I am really afraid that my identity will use by other people. It is really better if we will participate in icos that are not requiring kyc.
full member
Activity: 658
Merit: 102
January 25, 2019, 12:04:08 AM
#52
That's the weakness of KYC and we had a taste of it when facebook got hacked and another one when this forum's database got stolen. I miss the times when we could trade freely without having to deal with KYC on sites like bittrex and poloniex, but things change. Unfortunately, in most cases they change for the worse.
I used to be and still am against KYC and government agencies trying to oversee crypto trading, but reading the posts of some forum members here makes me thing that I'm in the minority.  

VPN + download Google Auth for PC = No more KYC  Cheesy
I tried as a test 1 year ago and I successfully bypass all KYC verifications, I forgot on which one of exchanges... it was one of the most popular.

There are many KYC methods. With documents, phone, real personal data verification etc.
The problem was in the past because it was to easy to create one account, fill it with "some" personal information and thats it. Now if they think they added google auth they will stop criminals to create fake accounts, well google auth can be downloaded and run under VPN so problem solved. Documents? Really? I BET if you look on dark web you will find many guys that are selling documents or custom documents to buy. This KYC thing is just another arrogant attempt to invade your personal privacy.
Absolutely agree with you. KYC verification does not justify its role, it only causes great harm to users of cryptocurrency. This is especially noticeable in the activities of ICO. KYC verification is still valid on exchanges and ICOs in transactions with large amounts of funds. To apply it absolutely for all is stupid. It is especially useless for bounty hunters. KYC checking slowly kills this activity.
sr. member
Activity: 840
Merit: 266
January 21, 2019, 02:32:04 PM
#51
He does say that this information is from top exchanges but who can confirm that it is really is? He can say whatever he wants to say but that will not make it true, it can be some KYC from some bounties and he claims it is from exchanges. I know that giving out your information is not a good thing but in some cases, it is for the better, like in bounties I am ok with doing basic KYC but not full KYC because that will help stop the cheaters and it is the only way.
member
Activity: 209
Merit: 60
January 21, 2019, 02:18:20 PM
#50
Now this is something I don't want to see even if I didn't do KYC on those website but still this is a data base theft and I'm wondering what are those websites saying now? They will say is not their fault ...like all the others...
sr. member
Activity: 826
Merit: 250
Bitgesell (BGL) Decentralized Cryptocurrency!
January 21, 2019, 01:27:14 PM
#49
Hacked Customer Data From World Leading Cryptocurrency Exchanges For Sale On The Dark Web?

https://www.ccn.com/hacked-customer-data-from-world-leading-cryptocurrency-exchanges-for-sale-on-the-dark-web/

"On a darknet market called “Dread,” a vendor going by “ExploitDOT” is attempting to sell user data from the know-your-customer (KYC) data top cryptocurrency exchanges ask for, required by most jurisdictions.

According to data shared with CCN, the hacker has an ad that has been online since July 2018, in which he claims to have hacked documents used in KYC checks – including identity cards and drivers’ licenses – from users of top exchanges like Bittrex, Poloniex, Bitfinex, and Binance.

The data is seemingly for sale for $10 per 100 documents or more, with discounts applying for those who buy in bulk, all the way up to $1 per 1,000 for an order of over 25,000. CCN was able to independently verify the ad on the dark web, which is still online. No links to it will be added to avoid promoting the service."



A few days ago, this also made news :

https://www.techspot.com/news/78317-leaked-database-exposes-87gb-emails-passwords.html
I think its possible that if anyone hacked exchanger they can collect your personal data. Nowadays you cannot trade unlimited without KYC verification so many people given KYC or personal document and identify on this exchanger. Yes, you can find some exchanger that they can open trade but not for a long time without KYC because of if you do not give KYC your account will be disabled or unable to withdraw asset or face any problem.So people face both side of the problem for KYC .
full member
Activity: 2142
Merit: 183
January 21, 2019, 12:54:48 PM
#48
Only if we transfer our confidential data to the appropriate state bodies, can we still have some confidence that the various criminals will not have it. Giving our data on the stock exchanges is very risky, and if we give them to the ICO teams when conducting a KYC check, it is generally equivalent to handing them over to scammers. Yes, with KYC checking something needs to be done and especially in ICO.
legendary
Activity: 2912
Merit: 1068
WOLF.BET - Provably Fair Crypto Casino
January 21, 2019, 12:07:39 PM
#47
Bad things happen and KYC databases are not the only source of your personal data. People leave their information on different places on the Internet and often they are really even not aware of it. It's good to be very careful and not give your personal information to everyone but sometimes you can't avoid that in order to get some product or services. I guess we all have to accept certain risk but it's really scary when you think on how many ways hackers can abuse your data.
full member
Activity: 658
Merit: 102
January 21, 2019, 11:53:44 AM
#46
For now, I try to join those ICO signature campaigns that do not require KYC verification. In addition to a certain risk of our data falling into the hands of criminals, we still spend a lot of time on these KYC checks, and sometimes they fool us all the same and our work is wasted. Now is a very difficult period and to participate in the ICO, and trade on the stock exchange.
full member
Activity: 616
Merit: 100
January 21, 2019, 08:11:27 AM
#45
yes when i do kome KYC i think twice about it, is this my data in the good hand, or maybe they sell our data to another people to makes scam and bad things, so we should careful when we send our data into another people
member
Activity: 532
Merit: 15
January 21, 2019, 06:35:46 AM
#44
this is damn scary! this is why we should jump into any ICO like crazy compromising our privacy just to make a few bucks.
copper member
Activity: 68
Merit: 2
January 21, 2019, 06:29:28 AM
#43
That's the weakness of KYC and we had a taste of it when facebook got hacked and another one when this forum's database got stolen. I miss the times when we could trade freely without having to deal with KYC on sites like bittrex and poloniex, but things change. Unfortunately, in most cases they change for the worse.
I used to be and still am against KYC and government agencies trying to oversee crypto trading, but reading the posts of some forum members here makes me thing that I'm in the minority.  

VPN + download Google Auth for PC = No more KYC  Cheesy
I tried as a test 1 year ago and I successfully bypass all KYC verifications, I forgot on which one of exchanges... it was one of the most popular.

There are many KYC methods. With documents, phone, real personal data verification etc.
The problem was in the past because it was to easy to create one account, fill it with "some" personal information and thats it. Now if they think they added google auth they will stop criminals to create fake accounts, well google auth can be downloaded and run under VPN so problem solved. Documents? Really? I BET if you look on dark web you will find many guys that are selling documents or custom documents to buy. This KYC thing is just another arrogant attempt to invade your personal privacy.
Pages:
Jump to: