Which one was it this time? Your Instagram? Snap Chat? Gmail? Bank accounts? Let me guess, you recently received notice that <insert brand here> had a little mishap and some data may have been compromised? Or, your data got stolen during the OPM hack. Or the Equifax hack. Or the Yahoo hack. Whatever it is, somehow, somewhere, your information was stolen. P.S. if you want a really good listen to what hackers can do, listen to this episode from the podcast /Reply-All/.
But you say, I was using two-factor authentication! I promise. That’s great, it really is, but unfortunately in today’s world, that doesn’t mean you’re safe anymore. I’ll talk about that in a bit.
Maybe you’re just sharing too much information on social media.
Maybe the hacker got lucky. Probably not.
So let’s talk through a few different areas where I see people making mistakes.
Scenario 1
Girl on Instagram (not naming names here) posts on her Instagram stories that two of her accounts got hacked. She goes on t1o say that many of her accounts all had some variation of the same password and she has no idea how she got hacked. I didn’t ask her what that password was, nor did she share that information (smart), but I spent some time going back and forth with her, giving her tips of what to do.
The thing is, this is more common than it should be, but it seems like most people are too worried or nervous to talk about it, same as in the commercial world (think about all these big box stores or companies that take months if not longer to come out about a compromise). How do we change this? Well one, it’s not a death sentence if you’re hacked, and two, it’s not something you should be embarrassed about. Hackers are getting better, and we’re all sharing more information on the internet than ever before.
If you’re an influencer or are aspiring to be an influencer, you’re probably posting a lot. Well, what are you posting about? Pictures of where you live? Places you frequent? Your family? Throwbacks from high school? Embarrassing stories? Now take a second to think about how compiling all that information could paint a pretty substantial file on you. Look through the last few weeks or month of your Instagram posts and stories, your blog posts, your Facebook.. Now think about it from an outsider’s point of view. If you were someone else looking into your life from the outside, what kind of story are you telling? Do your pictures have any sensitive information (address, delivery boxes, favorite coffee shops, and don’t laugh, I’ve seen it all)? You might ask how your favorite coffee shop could be considered sensitive. Well, if you go there every Saturday morning at 11am, and then again every Tuesday afternoon at 2pm, you’re setting a pattern for yourself. All I have to do is set up shop an hour before you get there and look busy. Then I can use a multitude of tools in an attempt to hi-jack your information, or I could just strike up a conversation with you based on the information I already have. You say you don’t talk to strangers? Well what if I know your favorite obscure band or sports team and I happen to have that shirt on? You’re probably going to be more inclined to at least have a short conversation with me now aren’t you?
Scenario 2
Now let’s think about those security questions we’ve answered again and again when we set up an account so if we lose our password we can still get in. What city were you born in? What was your first pet’s name? What was your first car? What is your mother’s maiden name? What is your paternal grandfather’s first name? What is your best friends first name? What is your favorite color? What is your favorite food?
Now remember when the quarantine started and everyone was posting quizzes on Facebook and Instagram? Let’s take a second and think about what kind of questions they were asking.
I’ll give you a couple minutes.
Now what kind of information are we seeing here? They are a lot of the same questions, aren’t they?
How many times did you see something like this go around? Well, I’m glad that at least went somewhat viral because it’s true. Yes, of course that isn’t a real quiz, they’re just making light of the fact many of these quizzes are indeed allowing the bad guy to learn a lot of information about you.
I’ve talked a little about phishing and social engineering, both here and on the podcast, but it’s worth repeating. People share a lot of information about themselves on the internet. We all have a desire to be liked, to be respected, to fit in. Social media makes that a lot easier, but it also raises the risk of what information people can use when they are targeting someone or something. You can change your privacy settings to avoid public posts, but what happens when you get a new friend request from an attractive individual you may or may not have met at the bar last weekend? Do you blindly accept it? This is another way that attackers are able to bypass the “friends only” settings. Again, we all want to be liked and to have friends. It’s not a bad thing, as long as we recognize it as a potential bias or flaw at times.
Scenario 3
Sometimes I join random groups on Facebook so I can get an idea of what the non-tech world is doing. Sometime last week someone posted this in one of those groups:
My first reaction was confusion, then a little bit of shock, then a lot more confusion. Maybe it’s a generational thing, but then again I’m not that old and I still can’t get behind TikTok either. Or maybe I’m just paranoid because I work in cybersecurity.
By the end of the day I think there were over 100 comments on this, many of them showing pictures that they’ve airdropped to strangers in Target, or have received themselves, waiting in line at the grocery store or walking through the airport. What?! Airdrop is really handy at times, I get it. I’ve used it a handful of times, but my airdrop is usually turned off, and when it’s on, I have it so only contacts can send to me. I also don’t have many contacts, so it might as well be off 😉
I then did a quick google search of airdrop attacks, I’m talking two minutes total here. There’s this one from December 2019 where hackers can block iPhones and iPads via Airdrop attacks. There was this one in August of 2019 that would show your phone number and passwords to malicious third parties. Oh and don’t forget, you can also hide malware inside images using an old technique known as steganography.
Can we see why hacking might be occurring more and more?
Here’s an experiment, influencer or not. Look back at the last few months of your posts across your most used social media outlet. Or even better, look back to your first Facebook or Instagram pictures and posts. What kind of information are you finding?
How about some potential good news. In 2016, Norton released a report where they surveyed 21,000 people in 21 countries. According to this report, 76% reported sharing passwords and engaging in risky behaviors despite knowing they need to actively protect themselves; 44% said they felt overwhelmed by the sheer amount of information they’re responsible to safeguard (raises hand, guilty); and 35% have at least one unprotected device. Does it get better with the more recent 2019 report? Depends on how you define this word “better”. A little over 10,000 individuals from 10 countries were polled, with 66% saying they have chosen not to download an app or use a service based on its privacy policy (good!); 84% reporting taking at least one step to protect their online activities; 60% saying it is impossible to protect their privacy or that it is too late to do so because their information is already out there; and 66% that are worried their identity will be stolen.
There’s still a lot to do, we are seeing a little progress between 2016 and now, but we can see there is still a lot of fear out there. The 84% that reported taking steps to protecting their online activities is huge, but it was also reported that these were very basic activities such as clearing cookies or limiting information shared online, not using VPNs, using anonymous payment methods, or even going so far as to delete social media accounts. Progress is progress though. Little by little I hope people will start to see they don’t have to lock down their entire lives, but they can take steps to make it more secure at least.
Do you want help in securing things? Let me know, I can try and help out.
499 comments
I was recently scammed out of $53,000 by a fraudulent Bitcoin investment scheme, which added significant stress to my already difficult health issues, as I was also facing cancer surgery expenses. Desperate to recover my funds, I spent hours researching and consulting other victims, which led me to discover the excellent reputation of Capital Crypto Recover, I came across a Google post It was only after spending many hours researching and asking other victims for advice that I discovered Capital Crypto Recovery’s stellar reputation. I decided to contact them because of their successful recovery record and encouraging client testimonials. I had no idea that this would be the pivotal moment in my fight against cryptocurrency theft. Thanks to their expert team, I was able to recover my lost cryptocurrency back. The process was intricate, but Capital Crypto Recovery’s commitment to utilizing the latest technology ensured a successful outcome. I highly recommend their services to anyone who has fallen victim to cryptocurrency fraud. For assistance contact Recoverycapital@fastservice.com and on Telegram OR Call Number +1 (336)390-6684 via email: Capitalcryptorecover@zohomail.com you can visit his website: https://recovercapital.wixsite.com/capital-crypto-rec-1
Hello Am From The UK , I want to write a little testimony about the good work of doctor Oyagu who cured me from Hsv 1 and 2 for just 2 weeks with his herbal medicine, I never believe I can be normal again and have a good life like others I always regretted the day I got diagnose with the virus, I was lost of hope when my doctor told me there is no cure for it but I keep thinking and thinking about my future, if I can have kids of my own well I am so grateful for my helper who get me cured with his herbal medicine, I go online in search of anything that can help me because I can’t deal with it forever so I found this doc Oyagu email on a blog of someone who was cured by him I quickly contact him for help and explain all my pain to him, he told me not to worry about it there is cure for real, I never believe until he send me the herbal medicine when I order for it and I have it within 4 days that is how I took the medicine for 2 week and the following week I go for test just to confirm I was 100% cured from this sickness what a miracle in my life I am so happy right now, you can also get in contact with him if you have such sickness through email address oyaguherbalhome@gmail.com or text him on WhatsApp, phone number +2348101755322 Dr Oyagu also has remedy to others disease like COLD SORES,HIV/AIDS,DIABETES.CANCER,HIGH BLOOD PRESSURE AND MANY MORE. I oblige everyone to contact this powerful herbalist Dr Oyagu and be free from suffering.
ETHEREUM RECOVERY ASSISTANCE: CAPITAL CRYPTO RECOVER HELPED ME RECOVER $98,000 WORTH OF LOST ETH
In cases of cryptocurrency scams, having accurate information and trusted support is essential. I would like to recommend Capital Crypto Recover Service, a professional team that specializes in assisting individuals with the recovery of lost or stolen Bitcoin and Ethereum (ETH). Their experienced experts are dedicated to helping victims of digital asset fraud by carefully analyzing each case, developing strategic recovery plans, Capital Crypto Recover Service knowledgeable team’s primary goals are to satisfy clients and offer significant support and working diligently toward fund retrieval. The team is committed to providing reliable assistance and maintaining a high level of client satisfaction. Based on my assessment, their reputation professionalism and a strong commitment to their clients. If you have experienced a cryptocurrency loss, you can contacting them for further assistance
Phone (Call/Text): +1 (336) 390-6684
Email: Capitalcryptorecover@zohomail.com
Alternate Email: Recoverycapital@fastservice.com
Website: https://recovercapital.wixsite.com/capital-crypto-rec-1
Greatest thanks to Dr Oyagu for his herbal drugs that he prepared for me and when I start using it in just 2weeks I was completely cured and that ended my HERPES SIMPLEX 1&2 DISEASE I am so happy and grateful to Dr Oyagu . after reading about him on a testimony of Jason Cash on a blogger. I knew suddenly Dr Oyagu was the right Doctor to cure my HERPES SIMPLEX 1&2 DISEASE. I discuss with Dr Oyagu and he prepared a herbal medicine for me and when it got sent to me in South Korean. I used the herbal medicine and 2weeks and I went to check up again. after 15years of suffering from HERPES SIMPLEX 1&2 at last I am smiling once again. Dr Oyagu also has remedy to others disease like COLD SORES, HIV/AIDS, DIABETES, CANCER, HIGH BLOOD PRESSURE AND MANY MORE. I oblige everyone to contact this powerful herbalist Dr Oyagu and be free from your suffering. contact his WhatsApp line: +2348101755322 or his Email: Oyaguherbalhome@gmail.com
“In the crypto world, this is great news I want to share. Last year, I fell victim to a scam disguised as a safe investment option. I have invested in crypto trading platforms for about 10yrs thinking I was ensuring myself a retirement income, only to find that all my assets were either frozen, I believed my assets were secure — until I discovered that my BTC funds had been frozen and withdrawals were impossible. It was a devastating moment when I realized I had been scammed, and I thought my Bitcoin was gone forever, Everything changed when a close friend recommended the Capital Crypto Recover Service. Their professionalism, expertise, and dedication enabled me to recover my lost Bitcoin funds back — more than €560.000 DEM to my BTC wallet. What once felt impossible became a reality thanks to their support. If you have lost Bitcoin through scams, hacking, failed withdrawals, or similar challenges, don’t lose hope. I strongly recommend Capital Crypto Recover Service to anyone seeking a reliable and effective solution for recovering any wallet assets. They have a proven track record of successful reputation in recovering lost password assets for their clients and can help you navigate the process of recovering your funds. Don’t let scammers get away with your hard-earned money – contact Email: Recoverycapital@fastservice.com
Phone CALL/Text Number: +1 (336) 390-6684 Contact: Capitalcryptorecover@zohomail.com
Website: https://recovercapital.wixsite.com/capital-crypto-rec-1
Hello my name is Kallya from USA i want to tell the world about the great and mighty spell caster called Priest Ade my husband was cheating on me and no longer committed to me and our kids when i asked him what the problem was he told me he has fell out of love for me and wanted a divorce i was so heart broken i cried all day and night but he left home i was looking for something online when i saw an article how the great and powerful Priest Ade have helped so many in similar situation like mine he email address was there so i sent him an email telling him about my problem he told me he shall return back to me within 24hrs i did everything he asked me to do the nest day to my greatest surprise my husband came back home and was crying and begging for me to forgive and accept him back he can also help you contact ancientspiritspellcast@gmail.com
Website ancientspellcast.wordpress.com WhatsApp: +2347070518515
I’m truly grateful for my healing journey. After struggling with herpes for a long time, I can confidently say I’ve experienced a major turnaround in my health by. Dr Ahonsie The symptoms that once caused me discomfort and worry are now gone, and I feel stronger and healthier than ever. This experience has restored my hope and given me a new sense of peace by. Dr Ahonsie I’m thankful for the support, care, and steps I took that led me to this point. Healing is possible, and I’m living proof of that. Doctor’s contact: .Email: drahonsie00@gmail.com or whatsapp +2348039482367
Hello my name is Sally my fiancé broke up with me last week i was so sad I changed completely, I wasn’t eating and i wasn’t talking to anybody, I cried a lot, I was so depressed and stressed out that I was scared I’m going to end up in the hospital because of all the stress and depression until one day i search online on getting love tips because I Love & care about him deeply and I just want us to be together as a couple again and I want us to last forever then i found a powerful spell caster Called Priest Ade that he solved so many relationship problem then Priest Ade told me he will come back to me between 24hrs after he cast spell on him never believe it until my fiancé called me on the phone and told me he want us to come back and live happily together forever , Am so happy now that Priest Ade help me bring my finance back to me. Thanks so much Priest Ade he can also help you Email him at ancientspiritspellcast@gmail.com
Website ancientspellcast.wordpress.com WhatsApp: +2347070518515
God bless Capital Crypto Recover Services for the marvelous work you did in my life, I have learned the hard way that even the most sensible investors can fall victim to scams. When my USD was stolen, for anyone who has fallen victim to one of the bitcoin binary investment scams that are currently ongoing, I felt betrayal and upset. But then I was reading a post on site when I saw a testimony of Wendy Taylor online who recommended that Capital Crypto Recovery has helped her recover scammed funds within 24 hours. after reaching out to this cyber security firm that was able to help me recover my stolen digital assets and bitcoin. I’m genuinely blown away by their amazing service and professionalism. I never imagined I’d be able to get my money back until I complained to Capital Crypto Recovery Services about my difficulties and gave all of the necessary paperwork. I was astounded that it took them 12 hours to reclaim my stolen money back. Without a doubt, my USDT assets were successfully recovered from the scam platform, Thank you so much Sir, I strongly recommend Capital Crypto Recover for any of your bitcoin recovery, digital funds recovery, hacking, and cybersecurity concerns.
You reach them Call/Text Number +1 (336)390-6684
His Email: Capitalcryptorecover@zohomail.com
Contact Telegram: Capitalcryptorecover Via Contact: Recoverycapitalfastservice.com
His website: https://recovercapital.wixsite.com/capital-crypto-rec-1
Exactly after 2weeks I met Dr. Oyagu , he got me cured from my 3 years of silent pains, i just needed to get the items and he got the medicines prepared and sent to me through UPS, I followed his prescriptions and daily routine prayers and the end seems like a miracle that I was totally cured of my HSV2 herpes disease, I was totally cured from my Genital Herpes within a short period of time which was just 2weeks . Doctor Oyagu is so powerful and genuine man, his herbal medicine works for real, I used his herbal medicine and I confirmed it…. very effective herbal medicine for eliminating herpes virus forever is what Doctor Oyagu do make. I’m so glad to have contacted doctor Oyagu for help and here I’m today totally cured from HSV2. Thank you so much Dr. Oyagu and God bless you for all you’ve done for me, I’ll keep testifying about your good work and how powerful and effective your herbal medicine is in eradicating the Herpes Simplex Virus. Doctor Oyagu can be reached on WhatsApp with his contact number: +2348101755322. He is also available on EMAIL: oyaguherbalhome@gmail.com or website oyaguspellcaster.wixsite.com/oyaguherbalhome