Investigation of leaking personal information in the express delivery industry: "inner ghosts" collect in batches, and outlets directly take delivery notes
YTO Express "inside ghost" involved leaking 400,000 pieces of express customer information, which may be just the tip of the iceberg in the express industry.
The Paper (www.thepaper.cn) has been investigating over the past few days that more than YTO is involved in the information leakage of express users, and there is a "black production" chain selling express user information on the Internet, which may involve Shentong, Debang, EMS (Postal Express) , Yunda and many other express companies.
In the chain of selling express information, there are not only "number dealers" who specialize in this line, but also participants who do purchases, express delivery staff for merchants, and even couriers and staff who claim to manage order numbers. Wait for the courier company "inside ghost".
A large amount of information containing the name, address, and phone number of express customers is packaged and sold online, each with a price ranging from 0.8 yuan to 10 yuan, and some can sell tens of thousands at a time, and even provide express user information in specific areas.
There are also people who claim to work in the postal system and manage the "order number", which can retrieve a large amount of information from the day's express delivery. "There is no problem with thousands of items per day."
Some of the information it sold was stolen less than 2 hours after the courier picked up the package.
According to multiple public materials, the reporter found that these trafficked express delivery information eventually flowed to criminals engaged in fraudulent activities to provide information support for their fraudulent activities.
According to Wang Xinrui, a senior partner and lawyer of Beijing Anli Law Firm, analyzed this, users whose personal information has been leaked have the right to request the courier company that collects their personal information to delete their personal information. If they are damaged by the leakage of personal information, they can file a lawsuit in the court. Request damages.
Purchasing agents, outlets, "inner ghosts", information loopholes are everywhere
Due to the epidemic, QQ user "Shao Zhuang"'s international purchasing agent business is not easy to do.
He turned to the "business" of selling user express information: posting a post on the Internet, and packaged and sold the original user express information for 80 cents a piece.
On the afternoon of November 17, after a trial, "Shao Zhuang" provided reporters with 261 express messages at a price of 210 yuan.
This information was "picked" by "Shao Zhuang" from the work mailbox and sorted in the file. Name, contact information, and address are listed in three columns.
Seeing the reporter's intention, "Shao Zhuang" asked if he could "eat" tens of thousands of orders. He claimed that he had at least 12,000 express delivery messages available for sale.
Soon, he sent the second batch of 1,287 express messages, claiming to be one-tenth of the resources in his hand.
Similarly, these courier messages from all over the country include names, phone numbers, and addresses that may be accurate to the room number.
"Shao Zhuang" stated that the information was left by the customer after placing an order with him, and it was true and verifiable.
To verify the authenticity, the reporter randomly dialed one of Ms. Bi from Zibo, Shandong, and found that the information listed in the form was completely accurate.
Ms. Bi recalled that she did find someone to buy things abroad before, but she did not expect the information to be leaked.
Another Ms. Gu whose express delivery information was leaked was also surprised after checking with reporters that the information was correct.
From the moment the order is placed, personnel in all aspects of logistics such as merchants, e-commerce platforms, express companies, and couriers have mastered the user's express delivery information, and the source of information leakage often comes from these aspects.
The staff at the outlets that deliver express delivery to businesses can also take advantage of the convenience to organize and package express delivery information and sell them for profit.
A QQ user with the nickname "Chairman Qianyan" said that he specializes in sending "small gifts" express to merchants on platforms such as JD.com, Taobao, and Pinduoduo, involving Shentong, Yuantong, Yunda, etc.
Although he has been in this business for a short time, he has accumulated thousands of "swiping orders" user express information.
"There is no stipulation on how to deal with it, it is placed in the background after delivery." It said.
The reporter paid 85 yuan to purchase 121 user express messages, all of which had "swiped orders" on the e-commerce platform.
One of the users, Ms. Zhao, told reporters that she had previously "swiped orders" in Pinduoduo, and the information on the list was correct.
Various "number dealers" are also active in various corners of the Internet community, looking for suitable customers.
A "number dealer" who is nicknamed "professional slip production" on WeChat told reporters that he has a large number of express user order numbers on hand, and the courier information corresponding to the order number can be inquired through the internal personnel of the express company. Each user information is 10 yuan.
"I have to give the courier company'insiders' money." Seeing the reporter bargained, he explained that his tracking number is real and available, not those "empty packages, fake logistics" that "swipe the order", those only have the tracking number, not other information.
In order to prove his "high-quality resources", he said that his express delivery information is equipped with the waybill number and can be "customized" to check as needed, "I will find which city and which express delivery you want."
The reporter paid 100 yuan to purchase 10 express orders in Shanghai.
"Professional Announcement Production" soon sent 10 pieces of "Debon Express" information with the delivery address of Shanghai in the form of pictures, including the express number, delivery address, recipient, contact information and other elements.
After the reporter dialed the phone to check the information, the recipient Ms. Cai was worried about the leak of personal information.
The "number dealer" said that as long as customers want resources, they can find common courier company order information on the market.
"It is also very risky. Now some'insiders' are afraid to take over, but there are always people who are'not afraid of death'." Qi said.
The reporter searched with the keyword "sell courier list" and found that there were multiple online posts "collecting and selling" courier information on platforms such as Baidu Tieba, QQ, and Douban. Almost every post had other users who left a message saying they wanted "resources ", some users choose to leave contact information, or direct private messages.
In Baidu Tieba, some online posts are directly posted in “courier bar, YTO Express, YTO, express, customer service” and other highly connected communities.
Candidly photograph the waybills and retrieve them in batches. The "inner ghost" claims that thousands of messages are readily available every day
In the “400,000 pieces of information leaked by YTO Express” that attracted attention, the “inside ghost” of the express company acted as an information stealer.
On November 17, YTO Express stated that “it is suspected that individual employees of the franchise outlets have colluded with external criminals and used employee accounts and illegal third-party tools to steal waybill information, resulting in information leakage.” However, YTO’s response did not clearly point out the “inside ghost”. The extent of leaked express user information and sales amount.
In fact, it is not the first time that YTO has leaked user information.
According to media reports, in October 2013, nearly a million pieces of YTO Express individual information were available online, and the tracking number data was updated 24 hours a day; from July 2018 to May 2019, someone used crawling software from YTO’s website Illegally stole the company’s express delivery information and made a profit of 1 million yuan.
On November 4 this year, the police in Yongnian District, Handan City, Hebei Province published an article disclosing another case of an "inner ghost" express company: In August of this year, the bureau received an alarm from a express company in Handan, and the investigation revealed that there was someone inside the express company. Leaked the internal system to query the login account, renting out the account information to Zhang, a man in Shahe City, Xingtai for 400 to 500 yuan a day.
Zhang and Gao have repeatedly released information about purchasing and renting express delivery system account information, and sold the obtained account information to Henan man Ma at a price of 1,000 yuan per day.
The reporter further investigated and found that in addition to YTO, other express companies on the market also have "inside ghosts" involved in selling express user information.
Zhang Ping (pseudonym) is responsible for delivering packages within the jurisdiction of Shentong Express at an express outlet in Yuanzhou District, Yichun City, Jiangxi Province.
According to him, the number of parcels delivered every day is around 300, and the delivery system can also keep one month's shipment data.
At 10 o'clock in the evening on November 17, the reporter purchased 100 express messages from him at a price of 1.5 yuan each.
Zhang Ping sent 100 parcel waybills at the outlets to reporters by taking photos, including both the recipient and the sender's information, and some directly indicate what the goods are in the parcel.
A QQ user who claims to work for Shentong Express and is nicknamed "Early Winter Slightly Cold", he can designate and search for express user information in specific areas as needed.
On the afternoon of the 18th, the reporter purchased 90 STO Express user information from three regions designated by Nantong in Jiangsu, Hangzhou in Zhejiang, and Suzhou in Jiangsu at a price of 3 yuan each.
Among them, Mr. Wu, a user of Shentong Express from Suzhou, told reporters that he did have a Shentong Express sent on November 16, but the recipient has not received it.
Another Shentong Express user from Hangzhou, Ms. Fang, said that she had a parcel from Anhui a few days ago, but she chose to reject it on the afternoon of the 18th. She did not know where the information was leaked in just a few days.
A QQ user nicknamed "-" told reporters that he works in the postal system and manages the "calling number" to obtain a large number of express user information. "My side is very safe. There is no problem with a few thousand a day. ".
He said that in the early stage, one hundred items could be traded a day, and after a few days, he could buy more.
However, if you want to buy "goods", you need to say in advance, he can only come after 6 pm, "the colleagues are there during the day, there are too many people".
At 6:25 pm on November 18th, the reporter purchased 100 pieces of postal user information from him at a price of 1.5 yuan each, all of which were sent from Xiaonan District, Xiaogan City, Hubei.
"-" said that these data were retrieved by him and his colleagues in front of the computer. It was the express delivery on the same day. You can check the tracking number verification.
The reporter randomly entered 5 of the tracking numbers, showing that these couriers were all picked up by postal couriers at about 4:56 pm on the 18th.
This means that less than 2 hours after the courier collects the parcel, the information of the express recipient user has been leaked.
On the afternoon of November 19, "-" again sent 1,600 pieces of express user information to reporters.
Checking the postal order number found that these express orders were also sent out on the afternoon of the 18th.
In addition to the investigations by the surging news reporters, the details of the "inner ghosts" of the express company leaking user information have repeatedly appeared in police announcements and court documents.
In May 2018, the Hubei Jingzhou Intermediate People's Court once sentenced a case involving citizen information leakage.
The case involved SF Express employees as the subject of information leakage. Express agents, cultural companies, as well as unemployed, fraudulent criminals and other parties participated in the case. They used WeChat, QQ and other software platforms to sell, provide, and illegally obtain SF Express tracking numbers and contacts. Single-class citizens’ personal information is sold.
The court verdict announced the results of the judgment against 19 people, of whom 11 were employees of SF Express.
The case seized more than tens of millions of suspected leaked citizens' personal information, involving a transaction amount of more than 2 million yuan, and also seized a network group involving illegally buying and selling citizens' personal information in more than 20 provinces and cities across the country.
Promote fake health products, falsely claim that there is a problem with the order, and leaked information into fraudulent "fish feed"
During the investigation, the reporter also found that in addition to some people "selling" express delivery information, some people also "receiving" information at high prices.
A user nicknamed "Min" by QQ contacted the reporter, saying that he needed to purchase a large number of express user information for health products such as "Guilong Ointment and Yihuang Tongluo Capsule", claiming to be used for telephone return visits to promote their products.
When asked whether they would engage in illegal activities such as "fraud", the other party denied it.
The reporter combed through multiple public documents, police announcements, and media reports and found that after the information of express users is leaked and sold, it will flow into the hands of fraudsters to provide information support for their fraudulent activities.
In the aforementioned case disclosed by the police in Yongnian District, Handan City, the system account of a courier company was trafficked into the hands of "fraudsters" to inquire about citizens' personal information.
In the case of SF Express "internal ghost" trafficking in express user information sentenced by the Jingzhou Intermediate People's Court, according to the Jingzhou Public Security Bureau, a complete express tracking number can be sold for up to 10 yuan. Among the criminal suspects arrested, some have been found Personnel have committed telecommunications fraud. "They cheat by selling fake and inferior health products, selling fake collections, or recycling collections."
Another case published by the Judgment Document Network shows that since April 2016, Zhang Feng (pseudonym) has advertised in the QQ group to buy citizens’ personal information, and then used his QQ account to contact the person who sold the citizen’s personal information. -2330 pieces of citizen’s personal information are purchased at a price of 3 yuan.
After that, Zhang Feng sold the purchased information materials containing the buyer’s name, telephone number, product name, delivery address, express order, etc., to the next home who carried out online fraud with his QQ number at a price increase of 1-2 yuan each. "Customers, earn the price difference, and make a profit of 12,000 yuan.
Another criminal ruling disclosed the process by which criminals used illegally obtained express user information to carry out fraudulent activities.
Starting February 15, 2017, Lai Wen (pseudonym) and others have purchased a total of about 400 pieces of "fish material" (Taobao order information) from "Xiaoshang" through QQ at a price of 9 yuan each, including name and phone number , Address, message, etc.
Since then, Lai Wen used computers, mobile phones and other tools to lie to the online buyers that there was a problem with the logistics of his orders, and he needed to operate refunds from platforms such as Alipay, "Ant Borrow", "Instalment", and "WeChat Loan", in this way.
Blacklists, high fines, and proposed legislation, how to plug information "holes"
The latest monitoring data from the State Post Bureau shows that the annual business volume of express delivery in my country has exceeded 70 billion pieces, and the domestic express delivery industry employs more than 3 million people.
However, as the volume of express delivery business continues to grow, the information leakage incidents of express delivery users that are exposed from time to time are like "bombs", causing the public to worry about the safety of personal information.
How to work together to tighten the "fence" in terms of legislation, supervision, and technology to block the "gap" of information leakage has become a topic of discussion in recent years.
Since 2016, 70 large domestic express logistics companies have jointly established a "blacklist" query system for express logistics, which blacklists 12 types of violations such as theft of express mail, leakage of customer information, and reselling of customer information.
Companies participating in the "blacklist" system of express logistics companies promise not to use the couriers on the "blacklist" within 5 years.
According to China News.com, Xu Yong, vice president of the Express Branch of the China Transportation Association, revealed that a total of 27,000 express delivery practitioners have been blacklisted in the five years since the system was established. In the past two years, the rate of violations of express logistics companies has decreased. Over 95%.
At the system level, on May 1, 2018, my country's first administrative regulation specifically for the express delivery industry, the "Interim Regulations on Express Delivery," came into effect.
The "Regulations" stipulate that companies operating express delivery services and their employees shall not sell, disclose or illegally provide user information known in the process of express delivery services, and the maximum fine is 100,000 yuan if the circumstances are serious.
The Law Committee of the National People's Congress solicited opinions on the "Personal Information Protection Law (Draft)" on October 21 this year.
Article 62 of the draft proposes that if personal information is handled in violation of laws and regulations, or if necessary safety protection measures are not taken in the handling of personal information, the relevant departments shall order corrections, confiscate illegal gains, and give warnings; if they refuse to make corrections, they shall be punished concurrently. A fine of less than one million yuan shall be imposed on the directly responsible person in charge and other responsible persons with a fine of 10,000 yuan up to 100,000 yuan.
If the circumstances are serious, the relevant business license or business license may be revoked, and the person in charge and other directly responsible persons may be fined 100,000 yuan up to 1 million yuan.
Wang Xinrui, a senior partner and lawyer of Beijing Anli Law Firm, analyzed that the “netizens” who sold the personal information of express users and those who purchased the personal information violated the provisions on the protection of personal information in the "Network Security Law" and did not constitute a crime Under circumstances, the public security organs shall confiscate the illegal income and impose a fine of one to ten times the illegal income. If there is no illegal income, a fine of less than one million yuan shall be imposed.
Users whose personal information has been leaked have the right to request the courier company that collected their personal information to delete their personal information. If they are damaged due to the leak of personal information, they can file a lawsuit to the court for damages.
He pointed out that if the circumstances of illegal sale or illegal acquisition of personal information are serious, it constitutes the crime of "infringing on citizens' personal information", and will be sentenced to fixed-term imprisonment of not more than three years or criminal detention, together with or a fine; Fixed-term imprisonment of not more than seven years and fines.
The Paper Journalist Zhao Siwei