New things work | Seeing the courier list all over the dynasty, the boss decisively reported the police. It turned out that the two courier was ...
Author:Workers Daily Time:2022.08.26
In just 9 days, 8614 personal information was stolen!
I never expected that "thief" was actually a courier
... ...
Lao Li (pseudonym) is a warehouse owner who is engaged in a third -party warehouse business to provide cargo storage and packaging services for online e -commerce.
Recently, some customers reported to Lao Li that many online shop buyers complained that they received fraud calls and suspected that personal information was leaked.
Old Li conducted an investigation of internal employees through the e -commerce management system and video surveillance, and did not find abnormal conditions. Later, the employee's work computer was checked, and no situation of being invaded by hackers was found.
Who leaked the buyer's personal information?
The courier list in the warehouse all faces all the way
The boss was suspected to check and found that 2 people squatted in the corner
In order to find out the "black hand", Lao Li carefully analyzed every link after the buyer placed the order: the warehouse employee packed the goods, posted the face -to -face order, and then waited for the courier to pick up the goods. Lao Li noticed that the frequency of buyers' complaints was not very high in this leak, not like operating through electronic systems, but more like artificially leaked through "earth methods" through secret photos.
If your employees have not found a problem, will it be leaked in the express delivery session? With this doubt, Lao Li began to pay attention to the courier who collects the courier.
On this day, Lao Li did not get off work normally, but walked quietly in the warehouse. In the large area area, Lao Li saw that there was a area in the area, all the express delivery was facing up the side of the courier list, which was unreasonable!
Lao Li said that in order to improve the efficiency of the work, the ticket staff will throw it on the ground at will, and it is impossible to go up all.
Lao Li continued to walk inside and found that in a corner that was not monitored, two people squatted there, one of them was taking pictures in the courier!
"What are you doing?" Seeing this scene, Lao Li shouted loudly. The other party noticed that he was found, and he wanted to delete the photo when he raised his mobile phone. Lao Li's eyes were fast and rushed up to grab the mobile phone. After viewing, there are hundreds of courier -free photos in the mobile phone album. Lao Li chose to call the police.
Two courier sneak shots of courier lists, stealing buyers' information for sale
Only 9 days of stealing the buyer's personal information 8614
The courier of a courier company Liu and Zhu.
According to Liu, he was not a "first offender" this time. As early as 2018, he met his family "Lao Cai" through mobile phone chat software and sold the personal information of the buyer on the courier list. In Lao Li's warehouse, Liu used the convenience of collecting courier to sneak out the courier list with his mobile phone, stealing the collection information of the online shop buyer, and sold it to "Lao Cai".
In 9 days from August 23 to 31, 2021, Liu and Zhu stole 8,614 personal information of buyers in this way.
Recently, the People's Procuratorate of the Yuhang District of Hangzhou City filed a public prosecution against Liu by the crime of infringing the personal information of citizens. The case is currently under trial.
Prosecutor reminds: After illegal obtaining citizenship information on courier orders illegal citizenship, citizenship information may be pretended to be accurate fraud -based on "quality problems in buying goods" or "express delivery" can be applied for refund or payment. Guide the victims on mobile phones or computers, fill in the corresponding bank card information and verification code to stole the bank card. Therefore, receiving such calls, remember not to transfer! Do not provide bank information!
With the popularity of the real -name system of express delivery, the express delivery list has become the hardest hit area for personal information leakage. Recently, multiple departments jointly carried out special actions of express personal information security governance, emphasizing strengthening the source of information security, promoting and popularizing privacy orders, and requiring to achieve a full coverage target of postal express single personal information.
Prevent personal information from "streaking"
Privacy Single "must option"
After the courier real -name system is fully popularized, a small courier surface list is available on the personal information such as names, telephones, and addresses. The express delivery list has become the hardest hit area for personal information leakage.
In this regard, the State Post Office, the Ministry of Public Security, and the State Cyber Information Office jointly held a special video promotion meeting of the special e -commerce platform enterprises involved in postal express personal information security governance, emphasizing the strengthening of the source of information security, promoting the popularity of privacy, and clearly proposed it clearly The timetable for fully covered the postal express.
Privacy orders have appeared for 5 years, but the penetration rate is not high. This time, the privacy order has changed from "optional" to "required option". Will the personal information on the express package continue to "streak"?
How does the courier form become a "leakage list"?
On June 28, the Zhejiang Yuyao police reported to kill a new type of black and gray industry chain that violated the personal information of citizens. More than 30 million yuan.
According to the criminal suspect, the unilateral sides of the courier is based on freshness and category price. The highest price is the real -time list of single categories. Most of them are generated on the day, not yet signed, and common items include mothers and infants, cosmetics, clothing, etc. On average, a courier surface is sold at a price of 1 yuan to 2 yuan. After layer of price increase, the courier list was eventually sold in the hands of "material merchants" at 5.5 to 7 yuan, becoming a "weapon ammunition" for telecommunications illegal activities such as online fraud.
With the popularity of the real -name system of express delivery, the express delivery list has become the hardest hit area for personal information leakage. From time to time, criminal activities that sell personal information through courier noodles are exposed from time to time.
In order to prevent the exposure of personal information from the courier surface, as early as 2017, some express companies and platforms tried to launch a privacy order. Some of the middle of the recipient's mobile phone number are replaced by the star number, and some hidden the specific address. But 5 years have passed, and the popularity of privacy orders in the express industry is not high. The reporter visited several courier outlets in Dongcheng District and Chaoyang District of Beijing, and found that most of the courier lists clearly showed important personal information such as the recipient's name, telephone, and receiving address. "Every time I throw the courier, I have to tear the face order before throwing it, or apply the phone number with a pen." Said Ms. Han, who lives in Chaoyang District, Beijing.
Why does the privacy list not be promoted?
Why does the privacy list not be promoted? Can consumers choose a privacy order?
The reporter's interview found that some courier companies provide privacy -oriented services. However, when the express program developed by the courier company to send the courier, only a few courier companies listed "the middle of the middle of the mobile phone number" and "only display the surname and not displayed the name" as the default option. Not the default service, users need to manually choose this service.
In the express delivery session, privacy faces greater operational difficulties. "If you use a privacy order, we have to scan a courier and a courier with the code scanning gun before sending the part." The courier brother Xiao Liu said that the transmission of privacy orders is more "laborious", which will greatly affect the delivery efficiency.
The reporter learned that when the end delivery, the courier usually distributes the courier according to the mobile phone number. The use of privacy orders not only requires additional inspections, but also increase the cost of express delivery enterprises. China Post Shanghai Branch has developed and developed by high -level workers. When express delivery with privacy orders is required to check the process of contacting the contact phone number in the system. In the case of large delivery volume, enterprises are bound To increase personnel equipment, thereby increasing costs. Some express companies once listed privacy to value -added services. Users want to hide personal information and need additional payment.
How to prevent express personal information from "streaking"?
Promoting personal information such as privacy orders and virtual numbers is an important means to block criminal crimes from the source of information. In order to accelerate and improve the promotion and application of privacy orders, the regulatory authorities require all e -commerce platforms and other e -commerce platforms to open up information bottlenecks with the delivery enterprises, share relevant data in time, and cooperate with the promotion of privacy orders.
At present, there are already companies responding. Zhongtong Express proposes to provide a privacy order service for consumers who use Douyin electronic noodle orders, desensitify the personal information of the consumer on the courier list, and use the star number symbol to replace the consumer's mobile phone number part of the several segments. In June, Yuantong Express was forced to switch privacy orders to its own platforms such as front -line courier, outlets, and terminal stations.
Regarding the actual operation problems faced by the privacy order, Liao Huaixue, a partner of Thai and Thai Law Firm, believes that in terms of technical measures, safety verification and construction should be strengthened. The traditional account password verification is used to verify other verification methods to improve the efficiency of the courier at the efficiency of the dispatch while ensuring that privacy is not leaked. At the same time, the authority management of the information system is strengthened, and the minimum operating permissions and the smallest access information range are allocated to employees only to meet employees.
While preventing the courier orders from becoming a "leak", preventing personal information leakage also needs to strengthen the internal system construction of express delivery companies. Many experts suggested that the courier company should establish a personal information protection internal control mechanism, sign a confidentiality agreement with employees, and strictly implement the punishment mechanism for breach of contract. Clarify the information security responsibilities of various departments and positions within the company, and it is strictly forbidden to prohibit the processing and storage venues of unrelated personnel entry and exit. The company can arrange for professional staff to monitor information processing of information processing, sorting, transportation, and delivery.
The express delivery list has repeatedly become a "leak list" to cause concerns
How does the express brother add "lock" for personal information?
A courier list indicates the name, telephone, and address. From this, you can find your social account and further promote your consumption habits and financial ability ... Recently, in a case cracked by the Ningbo police in Zhejiang, the suspect Through the application of the courier, the "undercover" company sneaked down and sold in batches to provide precise fraud objects for criminal gangs.
After the "Personal Information Protection Law" is implemented, the security of express information has once again become the focus of attention. As a direct provider of the courier service, the courier is always dealing with the face order. From all aspects of the delivery, they shuttled on the road with huge amounts of information. So, what can the courier do to protect the personal privacy of consumers? "Workers' Daily" reporter's visit.
Information monetization temptation
In just a few lines of words, you can describe a person's three -dimensional portrait. The information contained in the courier surface is amazing. Therefore, it is often stared at by criminals and became the hardest hit area for personal privacy. Together, there are courier brothers.
In the "Black Production Chain" in the face, the courier is usually at the top. During the "Double Eleven" period last year, the criminals bought a number of courier in Tongyuan, rented their accounts to steal face information, and then sold to various downstream scam gangs in layers. More than 400,000 personal information was leaked. In another case, under the instability of the gym sales staff, the Shanghai Yunda Courier's private collection and delivery area was more than 10,000, and the two were sold at a price of 150 yuan.
"On average, a courier is responsible for 5 to 7 communities, and tens of thousands of residents' information." Courier Zhang Yan said that he had faced the temptation of "information monetization". "Two real estate agencies in the area have found me respectively, and euphemistically proposes the information on the residents who want to make a facelift. The price is 2 yuan per article. It is my professional ethics. Besides, I only run alone in the surrounding communities, and it is easy to be discovered. "Compared with offline information trading, online transaction methods are hidden, strong, and widely influential. More. Recently, the courier brother Wang Lei was pulled into a "high -end single group" by his colleagues. According to the price and category of the face single product, the customer's information was sold out and sold out. "The three types of noodles in the car, health products, and mother and infant supplies are the highest. Because the" high conversion rate ", the seller is mostly courier, and there are people with e -commerce platforms and courier outlets that can be sold thousands a day."
The courier Jiang Chunlin told reporters that "black production" has many years and is divided into two types of "real -time" and "history". The "real -time list" flowing out on the day can be sold for 4 yuan, and the "historical list" that has been contacted can only sell a few corners.
Privacy order promotion is difficult
In response to the problem of information leakage, since 2017, express delivery companies have launched privacy orders. On the privacy form, personal information is encrypted, hidden names, address and telephone number part of the numbers. When the courier sends it, the code must be scanned through the APP to contact the recipient with the "virtual telephone". After the courier sign is collected, the corresponding relationship between the number is invalid.
However, the reporter found that on many express platforms, the privacy order has been offline, and even if it is still running, most of them appear in value -added services, not the default options. Consumers need to manually select "Safety Number" and "Hidden Site Sending" to hide relevant information on the face list. For the protection of privacy, the utilization rate does not rise and fall. Where is the problem?
"Each order must scan the code identification, and the distribution efficiency is at least 10%." Zhang Yan said that the traditional face was clear. The package of a building can be delivered concentrated. The delivery fee should also be raised accordingly. "For example, this order is swept out of Building 1, and the next order may be Building 2.
Technical issues are also obstacles to promotion. The person in charge of the rookie wrap has stated that the privacy order relies on electronic face orders and cloud printing technology. Whether online shopping users can receive a courier with privacy orders depending on whether the merchant installs cloud printing components.
Wang Lei's company has briefly launched a privacy order, and after the "618" promotion last year, it was announced to be removed. "At that time, the business volume increased, and the company introduced a group of crowdsourcing courier, but they could not log in to use the app, and they could not keep up with technical support in the background.
If you cannot be delivered to the household, the privacy order will indirectly affect the user experience. Jiang Chunlin told reporters that when customers are not at home, they will generally ask the courier in the courier rack or receiving room, and they will take it after get off work. However, in the pile of parcels, through fuzzy processing information, quickly and accurately find your own express delivery, the difficulty also rises directly.
Keep the information security "last mile"
On November 1st last year, the "Personal Information Protection Law" was formally implemented. It is clear that any organization or individual may not illegally collect, use, process, and transmit personal information of others, and to provide illegal trading, providing or disclosed personal information of others. It is specifically mentioned in the obligation of personal information processors that enterprises should take security technical measures such as encryption and de -identification when dealing with personal information.
"This means that providing privacy orders has become a legal obligation." Express logistics expert Zhao Xiaomin believes that guaranteeing the information security is the prerequisite for the high -quality development of the express delivery industry. The implementation attitude of the enterprise should be more firm. The mechanism is formed with platform e -commerce.
Standing at the end of the logistics link, the courier and consumers face face -to -face, can it block the loopholes of the "last mile" to leak the "last mile" and support a "protective umbrella" for personal information?
"First of all, it is not the 'vulnerability' itself." Wang Lei said with a smile, although he was also attentive, he still quit the "face group". "The buying and selling face order is‘ no business ’, so there will be courier caught in, but this is to push customers to marketing and fraud. Everyone gives us information, we will have a responsibility to guard, and it is the bottom line without violation of the law."
Jiang Chunlin is familiar with the routine of "noodle single black production", so he often reminds consumers, especially the elderly with weak personal information protection. "When sending express delivery, try to provide only the necessary information as much as possible, do not expose the real name, and the door number of the site; after the courier is obtained, timely destroy the document, or use the coating pen and thermal paper to wipe the key information."
Since being found, Zhang Ye knows that the face order still has "circulation value", and since then, he has since been cautious. "When the amount of courier is not large, I will try to cooperate with the customer's time to send them to the door of the house to reduce the link that may leak information. If it is placed on the station or the courier rack, I pass by the package for a few days. Will call to remind them again. "
(Comprehensive source: Hangzhou Daily, Guangming.com, Workers Daily)
Editor in this issue: Gan Xi Cheng Lili
- END -
"Free disaster" at the entrance of the hospital?Master pseudo was arrested in Jinan and planted!
A few months ago, a group of masters who claimed to invite fairy in Huaiyin Distri...
Jiutai Town, Shouguang City: Enhance execution and enhance the sense of mission
On August 24, Jiutai Town, Shouguang City held a key work promotion meeting to fur...