YOUR entire identity could be stolen, sold and used for blackmail by hackers getting tips from China, an FBI adviser has revealed.
Medical records, IDs and bank details are just some of the "lucrative" pickings cyber highwaymen are accessing.
Concerns over data protection soared this week after The Sun revealed Chinese hackers accessed 40 million Brit voters’ personal details.
Now, FBI and NCIS adviser Raluca Saceanu says she's seen evidence state actors are sharing information with criminal groups on how cyber attacks are carried out.
Ms Saceanu, who founded cyber security firm Smarttech247, says the average Brit is now at serious risk.
Spectacular New Year fireworks light up London sky as huge crowds celebrate across UK for first time in three years
She explained: "If cyber criminals have better access to the tactics, techniques and procedures used in these types of attacks, it increases the risk of both impersonation fraud and credential theft."
Impersonation fraud sees cyber criminals use details like names and addresses to pose as someone to gain access to accounts.
Credential theft is when usernames and passwords are stolen to break into email or social media accounts.
From here, they can make money through blackmail or by using the account details to set up payment methods.
Shockingly, virtually "every person" in the West has had their data hacked and put up for sale on the dark web, Ms Saceanu says.
The cyber security expert added: "Your data, my data, everyone. It is a nine trillion dollar industry.
"A common misconception is that these are teenage hackers in a basement.
"The reality is that this is a criminal operation formed of a massive supply chain."
Hackers can be financially or politically motivated and aim to get their hands on "valuable" data while conducting a cyber attack.
This can be used to construct sophisticated phishing campaigns to dupe unsuspecting victims.
Robbie Williams poised to launch his own brand of energy drinks to rival Prime
Ms Saceanu said: "I go into Santander, steal 20,000 records, chances are I couldn't do much with those.
"However you steal the context of the information, you get an email address of someone you know has an account there, and you get other personal details.
"I could craft a phishing campaign to say 'Your Santander bank account has been on hold', create a sense of urgency, ask them to pay a fee."
This can see you unwittingly hand over your entire identity and could give hackers access to your computer or phone.
The cyber whizz says she's seen £200 phishing kits for sale on the dark web, which help hackers create convincing emails with ChatGPT spin-off FraudGPT.
IDs, passports, driving licenses, health and financial data, diagnostics and scans can then be stolen and sold online.
Incredibly, a single health record can sell for over £900 compared to just £8 for a bank account or credit card.
Behind attacks are anyone from independent hacktivists to state-backed actors funded by rogue states like China, Russia and Iran.
Such countries also run their own hacking operations to achieve geo-political ambitions, that pose a considerable threat to Britain.
The Electoral Commission admitted last August that "hostile actors" - which The Sun revealed to be China - had accessed data systems and email during the August 2021 attack.
Crooks from the Communist superstate stole the name and address of anyone in Great Britain who was registered to vote between 2014 and 2022.
They also pilfered the names of those registered as overseas voters during the same period, and the names and addresses of anyone registered in Northern Ireland in 2018.
Reference copies of the electoral registers were also seized in the attack which was only identified in October 2022, 16 months later.
They apologised for falling foul of the "complex cyber-attack".
Ms Saceanu says politically-motivated attacks such as this are set to become more commonplace, with critical UK infrastructure such as the grid, water, public transport and healthcare all targets.
She said: "In 2015, Ukraine experienced a similar attack - believed to be backed by a foreign state - it caused a massive power outage and impacted about 230,000 people.
"The UK hasn't faced an incident of this magnitude before but the possibility remains a concern, particularly given the international tensions."
An attack could ransack the personal data of millions in the process.
AI - quickly growing in sophistication and capability - may also be used to speed up cyber attacks, analyse vast amounts of data and identify vulnerabilities at terrifying speed.
Ms Saceanu added: "There are about 43 billion cyber attacks happening constantly.
"The human is vulnerable. The machine is vulnerable. They are going to leverage these two vulnerabilities to crack a terror attack."
