Month: December 2018

You’re NOT too small to be hacked

You’re NOT too small to be hacked

We’ve come to expect cyber crimminels to target giant companies like Facebook, Experian and Marriott International. But many individuals assume their assets are too small for hackers to bother with. This kind of thinking leads to sloppy security practices and opens you to even more risk.

What the average person forgets is what is actually stolen in the big corporate breaches — individual customer information. Names, passwords, security questions, saved credit card numbers, addresses, and more. This information may let a hacker into your hacked account.

The amount of damage that could be done varies greatly depending on the account, what information is available to the hacker from the account, and how quickly you learn baout the breach and take corrective action.

For example, a user with access to your Adobe account could run up bills at Adobe, change your password and or account email to lock you out, or use your saved address and phone number along with any other saved information to attempt to break into other accounts or open other accounts in your name.

If you caught this breach right away, had not saved your credit card number in your accoun,t and did not reuse your password or security question and answer, you may be able to limit damage by quickly changing your password.

Freezing your credit will help block thieves from opening new accounts at major department stores, banks or credit card companies. It won’t stop thieves from opening accounts in smaller businesses that may not check against the credit bureaus. Nor will it stop people from opening cell phone accounts in your name because, surprisingly, cell phones use a different credit bureau than other accounts.

If hackers access a different acount – the damage they can do can be far greater. A hacked Facebook account provides much of the same information AND access to spread to all of your contacts. The hacker can send infected messages to all of your contacts, who will be more likely to click on a link to malware or open an infected document that appears to come from you.

The potential for thieves to drain your finances if they hack a bank, credit card, or mortgage account are more obvious. But people forget this same kind of damage can occur if they reuse passwords or security questions on multiple accounts. Hackers can write a script to try stolen credentials at hundreds of businesses in seconds. If you use the same information on multiple sites, the hacker can use that to log in and access those sites as well as the original site.

Many individuals object, “But I don’t have much money – why would someone target me?” If I ask if they would pick up a ten dollar bill off the ground – everyone says “sure” – even though ten dollars isn’t a large amount of money. To a hacker, if they can clean out your account for even a few hundred dollars with little effort, why not? And many people have much more credit than they realize. So while you may have a small amount of cash in the bank, you may have a significantly larger amount of credit. Reused passwords? You have multiplied the number of your accounts a thieve can get into,

Now multiply this by the number of other people whose accounts have been breached. Up to 500 million customers had their data stolen in the recent Marriott Interanational/ Starwood breach. At even a few dollars per user, the money for the hackers quickly soars into hundreds of millions of dollars. So no matter how little you have – you have a lot to lose.