Black and Gray Market Intelligence and Countermeasures in the Residential Service Industry (Beike)

Guest Speaker: Du Zhongwei (Beike)

Organizer: DataFunTalk

Overview: The Beike black‑gray market lab focuses on research and traceability of illicit activities in the residential service industry. The talk covers industry black‑gray market scenarios, intelligence building, tracing systems, and evidence collection.

1. Industry Service Model Beike upgrades traditional brokerage to an internet platform. Upstream: new‑home developers and second‑hand owners; downstream: buyers and tenants. Transaction platforms are categorized as information aggregation, transaction‑type, and self‑operated platforms.

2. Industry Black‑Gray Market Traditional gray‑market threats include traffic attacks, device farms, fake accounts, business abuse, and data theft. Real‑estate‑specific threats focus on fake listings, private deals, data theft, performance fraud, and off‑platform operations.

3. Typical Scenario 1 – Fake C‑Side Registrations Criminals obtain SIM cards, use proxy environments to create fake accounts, and sell them to agents for fraudulent viewings or to “wool‑pull” users for rewards. The supply chain involves card vendors, code‑selling platforms, and various online marketplaces.

4. Typical Scenario 2 – Crawler Software Over 60 commercial crawlers target Beike data, priced at 199‑455 CNY per year. They harvest listings for resale, consume platform resources, and may expose personal data.

5. Intelligence System Construction The intelligence workflow includes collection (city reports, external monitoring, internal white‑hat intel), tracing (account, device, business‑level analysis), and operational use (law‑enforcement, risk‑control, product optimization). A three‑layer architecture (collection, tracing, usage) supports high‑risk blacklists, phone/device black‑databases, and tool libraries.

6. Tracing Capability Building A "weapon library" gathers black‑market devices, software, and proxy resources. The technical stack uses logs and intel to derive rules, store results in audit and risk platforms, and supports automated tracing of incidents such as property leaks.

7. Enforcement and Evidence Collection The enforcement process includes tracing, analysis (identifying legal violations), reporting, forensic evidence gathering, and coordinated arrests with technical support.

Q&A Highlights Questions covered broadband usage by black‑market actors and the potential future use of blockchain for tracing incentives.

Thank you for attending.