Why do scam calls reveal victims' full name, national ID number, and bank card last digits?

According to China News, scam calls surged in 2025 with high frequency, prompting people to remain especially vigilant. In alarming cases, criminals not only called using the victim’s full name, but also recited the national ID number (CCCD) and the last digits of the bank card. Some callers also appeared to know the victim’s consumer history and social activity.

Behind these “accurate calls” is a combination of leaked personal data and the misuse of technology. Two representative cases released by the Public Security Bureau of Guangdong Province (China) illustrate how scammers can obtain and use sensitive information.

Case examples: screen sharing and payment theft

March 2025: impersonation of Douyin customer service

In March 2025, a person surnamed Liu in Yichang City (Hunan Province) received a call from an entity posing as Douyin customer service staff. The caller claimed they could cancel the service with a fee-deducted insurance and prompted the victim to enable screen sharing.

During the call, the criminals read out the CCCD and the last digits of the bank card. They also monitored the payment password displayed on screen, stealing 31,000 RMB.

The investigation indicated that the group buys leaked user data from e-commerce platforms for less than 10 RMB per record, then uses AI voice-synthesis technology to impersonate call-center staff, reducing the victim’s suspicion.

Another similar trap: “deduct livestream” claim

Another person surnamed Dao fell into a similar trap after receiving a fake Douyin customer service call. The caller said the victim had inadvertently activated a “deduct livestream” feature.

Using real information purchased from the dark market, the criminals referenced the victim’s name, phone number, and recent shopping history. They then requested the payment password under the guise of “account verification.” Through Douyin conference software with screen-sharing capability, the victim’s account was debited 10,398 RMB.

Cause and development: leaked data plus remote-control tools

Both incidents reflect a dangerous combination of leaked personal data and remote-control technology, enabling scammers to conduct highly targeted calls and extract payment credentials during screen sharing.

Data and channels: how personal information is stolen

Chinese police described four main channels that enable personal information to be stolen:

• Data bought and sold on the dark market. During the 2025 “Cyber Clean Campaign,” the Chinese Ministry of Public Security found about 5.5 million user data records being traded, including full names, IDs, and bank account information, packaged to support scam groups.
• Fake software and infrastructure. Fake government apps or public WiFi can be used to steal data. There were cases where criminals set up fake signal towers in shopping centers, collecting payment information of up to 120,000 people via free WiFi. Scanning QR codes from unknown sources can also allow access to contacts, messages, and personal photos.
• Misuse of new technology. Technologies such as facial recognition or wearable devices can be exploited. One case involved an attack on a residential facial recognition system that exposed 32,000 biometric data. Another case used smartwatch data to infer a user’s mental state through heart rate.
• Social media and “familiar-person” traps. Scammers use crawlers to collect publicly available information, then use AI to craft personalized scam scripts. One case described the use of a victim’s pet photo on Weibo to impersonate a veterinary hospital and extort money using a specific script.

Impact and analysis

Taken together, the cases show that scams are no longer random calls. Instead, they are premeditated attack tactics that target individuals’ data, combining stolen information with remote-control and impersonation methods to increase the likelihood of successful fraud.