senior cyber attack

Today’s retirees are tech savvy. Research shows that four out of ten people 65 and older have smart phones. And, 67% of that same demographic use the Internet. That makes this group a target for scammers and phishers. Protect Seniors Online (www.protectseniorsonline.com) published the National Cyber Security Alliance’s top cybersecurity best practices. They include:

  1. Create strong passwords that are least 12 characters long and include a mix of letters, numbers and symbols.
  2. Secure access to your accounts. Add a two-step authentication. Information about “locking down your login” can be found at lockdownyourlogin.com.
  3. Think before you act. Emails that suggest an urgent problem with your bank account or taxes is likely a scam. Call the company by phone to verify before acting.
  4. When in doubt, throw it out. If emails look “odd”, don’t click on the link even if you know the person who sent it as it may be a scammer posing as someone you know.
  5. Share with care. When using social media, be sure to adjust your privacy settings to limit who can see your information. And never share your location.
  6. Use security software and keep it updated.
  7. Adjust your browser safety settings for optimum security.
  8. Use the default firewall security protection on your computer.
  9. Log out out of apps and websites when you are done using them.

Test your security savvy by taking the online quiz – “Can You Spot an Online Scam?” at https://www.protectseniorsonline.com/quiz/

Cyber Security Travel Tip

Don’t use free Wi-Fi while traveling – it’s easy for hackers to take advantage of public Wi-Fi and your data may be at risk. Rather, log into a company’s secure Wi-Fi. Best yet, use your own personal hot spot whenever possible. Keep your data safe on the road!


Cyber Security Startup In The News

Big banks and corporations are spending millions to avoid future data breaches. According to an article at www.fortune.com, some of our country’s biggest banks are pouring millions of dollars into a cyber security startup, Menlo Security. Banks investing include JPMorgan Chase, American Express, and HSBC. These heavy hitters (and other investors) have invested in this round of funding to the tune of $40 million. Menlo aims to stop phishing attacks in their tracks by protecting their clients using “web isolation”.

The Fortune article quotes Rick Smith, head of private investments at JPMorgan Chase as saying, “Phishing has grown to be one of the most common threats to businesses across industries and geographies.” Smith praised the startup for “helping to eliminate phishing attacks without disruption to our business.”


Face IDs on the Rise

Apple’s iPhone X opened the door for the use of facial recognition security for phones. The Face ID will replace fingerprint scanning using Apple’s TrueDepth 3D camera to verify ownership of the phone and then unlock it. This technology will soon be available on Android phones.

According to an article in TechNewsWorld.com, “Android developers are working on similar systems and are close to bringing them to market.” Apparently, they’ve all been waiting for Apple to release it first to test the waters and make sure it was working.

There’s a lot of interest in the 3D technology which we should be seeing more of in early 2018. Experts are predicting that the 3D sensors will far exceed the fingerprint recognition technology.

Read more about this at https://www.technewsworld.com/story/84888.html


Uber’s 57-Million-User Breach

Uber just revealed the fact that they had a 57 million user breach in 2016. It seems that they had tried to cover up the breach by paying $100,000 to the hackers so that they would keep the hack a secret and delete the data. The stolen data included names, email addresses, and mobile phone numbers of 57 million Uber riders. The names and driver’s license numbers of around 600,000 U.S. drivers were also stolen.

Supposedly no trip location history, credit card, bank account, Social Security numbers or dates of birth were stolen. Bloomberg reported that access to the Uber data stored on Amazon Web Services was accomplished using Uber software engineer credentials that were found on GitHub. As soon as the data was stolen the hackers emailed Uber and demanded money.
Read more about this at https://threatpost.com/uber-reveals-breach-of-57-million-users-admits-to-covering-up-incident/128969/


This information is not intended to be exhaustive nor should any discussion or opinions be construed as professional advice.  Should you have any questions or would like to discuss your risk exposure with your company’s cyber security insurance, please contact the insurance pros at ARCW Insurance.  We are here to help.