It may seem like stories of massive data breaches are popping up in the news on a weekly basis these days. Unfortunately, this is not surprising. As technology progresses, all of our information moves to the digital world, and, as a result, cyber attacks are becoming the new wave of crime. Corporations and even small businesses are extremely attractive targets to cybercriminals, simply due to the large payday of data that can be nabbed in one fell swoop.
What is a data breach and how and why do they happen?
The main reason that cybercriminals are stealing personal information is for use in identity theft. According to Symantec’s ISTR Volume 20, the number of data breaches has increased 23 percent in 2014. The main three types of information targeted were real names, government ID numbers, and home addresses.
Targeted attacks from cybercriminals are generally carried out in four ways: exploiting system vulnerabilities such as out of date software, people using weak passwords, SQL injections and targeted malware attacks. When systems don’t have the latest software updates it can create a hole that an attacker can use to sneak malware onto the computer that can steal data. Weak and unsecure user passwords can make it easy for an attacker to crack, especially if the passwords contain whole words or phrases. SQL injections allow for drive-by downloads that will inject spyware or malware onto the computer, without the user doing anything to contract the malware. Targeted malware attacks are when attackers use spam and spear phishing tactics to try and trick the user into revealing user credentials, downloading malware attachments or directing users to vulnerable websites.
What Can I Do To Protect My Information?
Being proactive about your accounts is the best security measure that you can take to do your part to help prevent data breaches.
- Make sure that you use strong, secure passwords for each account you access, and be sure not to use the same password across multiple sites. Keeping track of various passwords can seem like an insurmountable feat, but there are utilities such as Norton’s ID Safe Password Manager to help you keep track of all of those random strings of letters, numbers and characters.
To keep your personal identity safe, it’s important to keep a watchful eye on your information.
- Monitor your bank and financial accounts on a regular basis for suspicious activity. If the companies you do business with offer activity alerts via text or email, sign up for them.
- If you do see suspicious activity, take action as soon as possible. Contact the bank or institution the suspicious activity originated from. Notify them of the suspicious transaction and inform them that your information was stolen in a data breach.
Data breaches are here to stay, and the best defense against them is a good offence. Educate yourself and stay diligent about monitoring your online life. Luckily, there are laws in place to protect you, but it is up to you to report any suspicious activity and fight back against cybercrime.