Fraudsters Exploit Vacant Homes and Postal Services for Identity Theft
Severity: Medium (Score: 51.9)
Sources: Bleepingcomputer, Scworld
Summary
A new fraud tutorial has emerged, detailing how cybercriminals exploit vacant residential properties and postal services to commit identity theft and financial fraud. This method, which diverges from traditional cybercrime techniques, involves identifying unoccupied homes through real estate platforms and using legitimate postal services like USPS Informed Delivery to monitor incoming mail. Once valuable documents are identified, fraudsters can submit change-of-address requests using fake identities to redirect mail to their controlled locations. The U.S. Postal Inspection Service reported a 139% increase in mail receptacle theft from 2019 to 2023, highlighting the growing impact of these tactics. The approach combines open-source intelligence and physical property exploitation, making it difficult to detect. Organizations are advised to implement cross-domain signal correlation to counter these sophisticated attacks. The tutorial's circulation in online chat groups poses a significant challenge for cybersecurity defenses. Key Points: • Fraudsters are exploiting vacant homes and postal services for identity theft. • The U.S. Postal Inspection Service reported a 139% increase in mail receptacle theft. • Organizations should adopt cross-domain signal correlation to detect these attacks.