88% of the leakage of user data in Russia is the fault of the employees of the companies that requested the data. At the same time in the world for this reason there is only a 56% loss of data. This is stated in the research company Ernst & Young (EY), a review of which leads to RBC.
As told at the presentation of the results of the research head of the center for technology, media and Telecom, EY Yuri Hedgerow, the average salary of an employee who has access to data, in Russia is 27 thousand rubles. The same amount can be gain from the sale on the black market two or three records with personal data. Thus, low wages can be called the factor that directly affects the amount of data leaks in Russia.
EY also estimate that the average user in Russia on average, there are 15 identifiers (datasets that he leaves the state or companies to verify your identity). For example, 70% of Russian Internet users have a profile in the Unified system of identification and authentication (ESIA), one SIM card, Bank card, as well as accounts on several Internet sites. Users from Moscow are, on average, at 24 ID. The higher the number, the greater the likelihood of leakage data of the person from one or another database.
Recall that in recent weeks Russia has seen several high-profile leaks. In early October it became known about the leak of credit card data of customers of Sberbank. Media wrote that the sellers data on the black market allegedly got the data 60 million credit cards, both existing and closed. In “Sberbank” then stated that many credit cards just been issued: active approximately 18 million, and the Bank has issued about 40 million cards. Soon, the Bank issued a press release in which they talked about the leak of data cards 200 customers, but then the Bank acknowledged the data leakage 5 thousand cards. Later in “Sberbank” reported that the security service together with law enforcement identified the perpetrator of the data breach of customer card. They found 28-year-old head of the branch in one of the business units of the Bank, who had access to databases.
At the end of October, the Network put up for sale the data with late borrowers “savings” – the source of the leak was the collection company “national collection service” (NCW), and its employee stole the information, was arrested. Leakage also occurred in VTB, “Beeline” and microfinance company “Greenman”.