Using Trojan programs to illegally steal citizen information, a man in Shanghai was hired by overseas personnel to join a logistics company case | Information | Logistics
In recent years, telecom fraud cases involving impersonating express delivery customer service have occurred frequently, with one key reason being the leakage of the victim's shopping, express delivery, and related information. In the early stage, Shanghai police discovered clues of logistics information leakage in a fraud case: a man named Peng was hired by overseas personnel and applied to a logistics company. He implanted a Trojan program in the company's computer to illegally steal personal information of citizens.
In early March of this year, the Minhang Branch of the Shanghai Public Security Bureau received a report of a telecommunications network fraud case. The 26 year old victim, Ms. Xue, was deceived by fraudsters who impersonated customer service and claimed to pay more than 20000 yuan for lost packages. In the investigation of the case, the police found that the key to successful fraud is for criminals to accurately grasp the victim's identity, online shopping orders, and courier information. After analysis and judgment, the source of the information leakage was ultimately identified as a logistics company located on Huijin Road in Qingpu District, Shanghai.
The investigating police conducted an inspection and analysis of over 40 computers of the company, and found that some of them were artificially planted with specific Trojan programs. The programs stole relevant consumer information by attacking the logistics company's dispatch system and transmitted it overseas. The implantation time of this Trojan program is the end of September 2022, during which a former employee named Peng, who suddenly resigned after only 5 days of employment, entered the police's sight. After further investigation and obtaining relevant evidence, the police arrested suspect Peng on March 29.
According to Peng's confession after arriving at the case, in September 2022, he met his previous employer who wanted to purchase citizen information through a foreign social media app. The other party instructed Peng to join a logistics company to steal citizen information and promised to purchase it at a price of 2.5 yuan per piece. For profit, Peng downloaded a Trojan program from his previous employer and joined the logistics company involved on September 25th. When he committed the crime, he first hid in the company warehouse toilet. After everyone left, he implanted the Trojan program into the computer connected to the printer through a USB drive, and left without saying goodbye the next day. But what he didn't expect was that after committing the crime, the overseas company refused to pay the promised compensation on the grounds of low information quality.
On this basis, the investigating police conducted in-depth investigations based on the characteristics of the Trojan program, and found that some computers in logistics parks in other provinces and cities were also implanted with similar Trojan programs. After field investigation and evidence collection, the police found 22 poisoned computers, successfully solved 3 cases in series and captured 8 suspect. Different from Peng's criminal tactics, the suspect in the three cases sneaked into e-commerce stores in the logistics park, planted trojans on computers, and did not apply in advance.
![Using Trojan programs to illegally steal citizen information, a man in Shanghai was hired by overseas personnel to join a logistics company case | Information | Logistics](https://a5qu.com/upload/images/4e2bb26f09383e24a8e102b93517b8c2.jpeg)
At present, Peng has been prosecuted by the Minhang District Procuratorate for suspected infringement of citizens' personal information, and the other 8 suspect have been taken criminal coercive measures by the Minhang police according to law. The case is under further investigation.
It is reported that this is the first case solved in Shanghai where a Trojan horse was implanted into a logistics company's computer to infringe on a citizen's personal information. Since the beginning of this year, the Shanghai police have focused on cracking down on illegal activities such as hacker attacks and sabotage, online black and gray industries, and online water armies. They have cleared more than 11000 pieces of harmful information and closed down more than 320 illegal accounts. At the same time, the Internet data center, cloud platform, APP and other network application services with prominent illegal and harmful information were rectified, with 139 administrative penalties and 5 websites and applications closed. A total of 24 hacking cases have been solved, and 77 suspects have been arrested, with a total amount of over 30 million yuan involved.