在大多数人眼中,暗网是一个极其神秘的地方。还有一些人觉得,暗网就是一个藏污纳垢的地下黑市,是交易毒品、枪支、假币,甚至是被盗视频网站账号的地方。
这种印象大体是正确的,不过最近,美国的暗网也成为一些犯罪分子交流犯罪手段的场所。有人甚至在暗网上公然兜售如何骗取国家失业保险。有意干一票的诈骗犯甚至能够获得手把手的指导,教你如何从国家失业保险计划里骗钱。
只要再多花一点钱,犯罪分子就可以购得全套的公民身份信息(包括一个人的姓名、社会保障码、出生年月日、家庭住址等)。这也充分说明了针对政府实施诈骗的有组织犯罪已经发展到了多复杂的程度。
美国的相关犯罪何时变得如此猖獗了?首先要说说公民身份信息被盗的问题。在过去15年间,美国公民身份信息被盗案件快速增长。光是在2019年,美国就有1.64亿余条敏感信息遭到泄露。在信息安全上,我们没有一个人是安全的。就连美国阿肯色州州长的身份都被犯罪分子用来申领该州的失业救济了。
受新冠疫情影响,美国各州受理的失业保障金请求达到了平时的10至15倍。此外,各州还要向未参与传统社保的个体劳动者发放大量疫情失业救助金。也就是说,要想拿到这笔钱,申请者必须证明自己是“有收入的个体劳动者”,这在美国也是头一遭。而且申请者几乎没有多少准备的时间。
这就带来了另一个问题——人们能够在暗网上购买虚假的纳税申报单,以此证明自己的个体劳动“收入”,然后骗领每周600美元的失业救济。所以毫不奇怪,有些州已经发现大量申领者都涉嫌骗取疫情失业救济金。
这些政府纾困计划也给犯罪分子带来了生财之道。大规模的诈骗行为愈演愈烈。一时之间,90岁的砖瓦匠、12岁的理发师,甚至连坐牢的人和死人都出来领取救济金了。诈骗分子抓住机会,“隐藏于人群之中”,想方设法从国家社保体系里吸血。据美国劳工部的监察长估计,诈骗分子可能已经从美国政府骗取了高达260亿美元的失业保险。
如此大规模的诈骗犯罪会带来三大影响。首先,骗领行为给社保带来了系统性风险,使各州难以按时将资金拨付给真正需要的人。一线工作人员面临的欺诈行为大幅增加,同时还要面临各级官员不切实际的要求和压力——虽然这些官员也只是想把钱尽快发出去,以保持经济的运转。
第二,每个被盗用的身份背后,都是一个活生生的人。身份信息被盗的受害者只能自己面对各种不利影响。他们可能要花不少时间、钓鱼和精力才可以解决这个问题。
第三,诈骗所得反过来又助长了有组织犯罪。从规模、范围和复杂程度看,这种犯罪不可能靠一个犯罪分子单打独斗来完成。关于境内外的有组织犯罪团伙是如何组织实施针对社保资金的诈骗活动的,媒体报道早已汗牛充栋,在此无需赘述。
尤为令人震惊的是,在260亿美元中的相当一部分,都被用于人口贩运、毒品交易和枪支走私等恶性犯罪。大量证据表明,从美国的相关政府项目中盗走的钱,有的甚至被用于资助恐怖主义。阿拉伯地区的基地组织曾经在其官方杂志《激励》(Inspire)中刊登过一篇文章,文中就讲到了如何利用政府项目奖金资助极端主义活动——这篇文章还讲了怎样制造炸弹,以及如何实施恐怖袭击。
各地政府都在想方设法降低诈骗犯罪,将社保资金提供给真正有需要的人。不过各地也都不同程度地面临着资源有限、技术老旧等问题。有时他们的“武器库”甚至还比不上犯罪分子。
一线工作人员需要我们帮助他们打击这些犯罪活动,也需要我们将这些资源提供给真正需要的人,并且防范诈骗问题在未来继续发生。政府部门必须对暗网进行监控,研究犯罪分子的犯罪手段,及时找出可供打击的弱点。
我们还应该打破各州之间的人为障碍,群策群力地解决这一问题。犯罪行为是跨州发生的,所以各州的视野不应该局限于本州的边界。最后,立法部分也需要做出投资,为一线人员配备更加先进的技术手段,比如模式识别算法等,以便及时甄别出大规模的诈骗团伙。
疫情大大改变了我们所有人的生活。我希望它也能够改变我们对打击相关犯罪的支持力度,只有这样,我们才可以斩断犯罪团伙的利益链,将资金真正发放到急需它们的人手上。这样才能切实筑牢我们的社会保障网络,让社会更加安全。
本文作者乔恩·科斯是汤森路透公司风险、欺诈与合规副总裁。
译者:朴成奎
在大多数人眼中,暗网是一个极其神秘的地方。还有一些人觉得,暗网就是一个藏污纳垢的地下黑市,是交易毒品、枪支、假币,甚至是被盗视频网站账号的地方。
这种印象大体是正确的,不过最近,美国的暗网也成为一些犯罪分子交流犯罪手段的场所。有人甚至在暗网上公然兜售如何骗取国家失业保险。有意干一票的诈骗犯甚至能够获得手把手的指导,教你如何从国家失业保险计划里骗钱。
只要再多花一点钱,犯罪分子就可以购得全套的公民身份信息(包括一个人的姓名、社会保障码、出生年月日、家庭住址等)。这也充分说明了针对政府实施诈骗的有组织犯罪已经发展到了多复杂的程度。
美国的相关犯罪何时变得如此猖獗了?首先要说说公民身份信息被盗的问题。在过去15年间,美国公民身份信息被盗案件快速增长。光是在2019年,美国就有1.64亿余条敏感信息遭到泄露。在信息安全上,我们没有一个人是安全的。就连美国阿肯色州州长的身份都被犯罪分子用来申领该州的失业救济了。
受新冠疫情影响,美国各州受理的失业保障金请求达到了平时的10至15倍。此外,各州还要向未参与传统社保的个体劳动者发放大量疫情失业救助金。也就是说,要想拿到这笔钱,申请者必须证明自己是“有收入的个体劳动者”,这在美国也是头一遭。而且申请者几乎没有多少准备的时间。
这就带来了另一个问题——人们能够在暗网上购买虚假的纳税申报单,以此证明自己的个体劳动“收入”,然后骗领每周600美元的失业救济。所以毫不奇怪,有些州已经发现大量申领者都涉嫌骗取疫情失业救济金。
这些政府纾困计划也给犯罪分子带来了生财之道。大规模的诈骗行为愈演愈烈。一时之间,90岁的砖瓦匠、12岁的理发师,甚至连坐牢的人和死人都出来领取救济金了。诈骗分子抓住机会,“隐藏于人群之中”,想方设法从国家社保体系里吸血。据美国劳工部的监察长估计,诈骗分子可能已经从美国政府骗取了高达260亿美元的失业保险。
如此大规模的诈骗犯罪会带来三大影响。首先,骗领行为给社保带来了系统性风险,使各州难以按时将资金拨付给真正需要的人。一线工作人员面临的欺诈行为大幅增加,同时还要面临各级官员不切实际的要求和压力——虽然这些官员也只是想把钱尽快发出去,以保持经济的运转。
第二,每个被盗用的身份背后,都是一个活生生的人。身份信息被盗的受害者只能自己面对各种不利影响。他们可能要花不少时间、钓鱼和精力才可以解决这个问题。
第三,诈骗所得反过来又助长了有组织犯罪。从规模、范围和复杂程度看,这种犯罪不可能靠一个犯罪分子单打独斗来完成。关于境内外的有组织犯罪团伙是如何组织实施针对社保资金的诈骗活动的,媒体报道早已汗牛充栋,在此无需赘述。
尤为令人震惊的是,在260亿美元中的相当一部分,都被用于人口贩运、毒品交易和枪支走私等恶性犯罪。大量证据表明,从美国的相关政府项目中盗走的钱,有的甚至被用于资助恐怖主义。阿拉伯地区的基地组织曾经在其官方杂志《激励》(Inspire)中刊登过一篇文章,文中就讲到了如何利用政府项目奖金资助极端主义活动——这篇文章还讲了怎样制造炸弹,以及如何实施恐怖袭击。
各地政府都在想方设法降低诈骗犯罪,将社保资金提供给真正有需要的人。不过各地也都不同程度地面临着资源有限、技术老旧等问题。有时他们的“武器库”甚至还比不上犯罪分子。
一线工作人员需要我们帮助他们打击这些犯罪活动,也需要我们将这些资源提供给真正需要的人,并且防范诈骗问题在未来继续发生。政府部门必须对暗网进行监控,研究犯罪分子的犯罪手段,及时找出可供打击的弱点。
我们还应该打破各州之间的人为障碍,群策群力地解决这一问题。犯罪行为是跨州发生的,所以各州的视野不应该局限于本州的边界。最后,立法部分也需要做出投资,为一线人员配备更加先进的技术手段,比如模式识别算法等,以便及时甄别出大规模的诈骗团伙。
疫情大大改变了我们所有人的生活。我希望它也能够改变我们对打击相关犯罪的支持力度,只有这样,我们才可以斩断犯罪团伙的利益链,将资金真正发放到急需它们的人手上。这样才能切实筑牢我们的社会保障网络,让社会更加安全。
本文作者乔恩·科斯是汤森路透公司风险、欺诈与合规副总裁。
译者:朴成奎
To most people, the dark web is a mystery. To others, it is a scary online marketplace where people can buy drugs, guns, counterfeit money, or even login credentials to a stolen Netflix account.
While all of this is true, recently it has also become a booming market for unemployment insurance (UI) fraud “how to” services, where fraudsters can acquire step-by-step guides on how to steal from state employment programs.
For a few dollars more, thieves can buy the “fullz” (dark web slang for a full set of stolen personal data that includes a person’s name, Social Security number, date of birth, address, and more). This is the level of sophistication organized crime has gained in its efforts to steal from governments.
How are they able to run this racket? First, it starts with the supply of stolen identities, which has rapidly increased over the last 15 years. In 2019 alone, over 164 million sensitive records were exposed in the U.S. None of us are safe from this problem. Even the governor of Arkansas’s identity was used to file for UI in his own state.
When COVID-19 hit, states were forced to process 10 to 15 times the typical number of UI claims. On top of this massive challenge, states were asked to disburse Pandemic Unemployment Assistance (PUA, part of the CARES Act) to self-employed Americans who are not covered by traditional UI programs. This meant those Americans would have to validate self-employment income, for the first time ever, with little to no lead time.
This created another problem: People could purchase fake tax returns on the dark web if they wanted to show previous self-employment “income” and fraudulently claim $600 per week in PUA funds. Not surprisingly, some states have found that a lot of their PUA claims are fraudulent.
These moves have opened the floodgates to criminals who use what appear to be payments to 90-year-old bricklayers, 12-year-old barbers, and incarcerated and deceased people to commit fraud on a massive scale. Fraudsters have literally seized on the opportunity to “hide in the herd” of new claimants to rip off the system. The Labor Department’s inspector general estimates that up to $26 billion of UI payments may have gone to fraudsters.
There are three major impacts of crime at this scale. First, the false claims clog the system and delay states’ ability to to get the money out to those who need it. Staff on the front lines have faced an overwhelming increase in fraud attempts and unrealistic pressure from officials to push funds out to keep the economy afloat.
Second, each stolen identity represents a human being. The victim of identity theft will have to deal with the repercussions of the theft. It takes time, money, and emotional exertion to overcome identity theft.
Third, the stolen money funds organized crime. The scale, scope, and sophistication of these crimes can’t be conducted by individual slicksters. There have been numerous reports of how organized crime, both domestic and foreign, is orchestrating UI fraud to fund operations.
Shockingly, much of this $26 billion will be used to fund crimes such as human trafficking, the drug trade, and gun smuggling. There is plenty of evidence to suggest that money stolen from our government programs even helps fund terrorism. In fact, Inspire, the magazine allegedly published by al-Qaida in the Arabian Peninsula, ran a story on how to use government programs to fund extremist activities. This complemented its stories on bomb-making methods and instructions on how to carry out terrorist attacks.
Governments are trying their best to reduce fraud and get the funds to those in need—but they are struggling with limited resources and antiquated technology. Often, they are outgunned by the criminals.
Those on the front lines need our help in fighting these crimes, and the resources to help those in need and prevent future fraud. And the authorities need to study the tactics of criminals by monitoring the dark web to identify any vulnerabilities in their process.
We also need to break down the artificial barriers between states so that they are working together against this problem. Criminals cross state lines, so states need to look beyond their borders. Finally, legislatures need to invest in providing those on the front lines with more advanced measures like pattern recognition algorithms to identify large-scale fraud rings.
COVID-19 has significantly changed all of our lives. I hope that it also changes our level of support for detecting and preventing fraud in government programs, so that we can cut off funding to crime rings and send those funds to those who desperately need them. That will safeguard the integrity of our social safety net while making our communities safer.
Jon Coss is vice president of risk, fraud, and compliance at Thomson Reuters.