Which one was it this time? Your Instagram? Snap Chat? Gmail? Bank accounts? Let me guess, you recently received notice that <insert brand here> had a little mishap and some data may have been compromised? Or, your data got stolen during the OPM hack. Or the Equifax hack. Or the Yahoo hack. Whatever it is, somehow, somewhere, your information was stolen. P.S. if you want a really good listen to what hackers can do, listen to this episode from the podcast /Reply-All/.
But you say, I was using two-factor authentication! I promise. That’s great, it really is, but unfortunately in today’s world, that doesn’t mean you’re safe anymore. I’ll talk about that in a bit.
Maybe you’re just sharing too much information on social media.
Maybe the hacker got lucky. Probably not.
So let’s talk through a few different areas where I see people making mistakes.
Scenario 1
Girl on Instagram (not naming names here) posts on her Instagram stories that two of her accounts got hacked. She goes on t1o say that many of her accounts all had some variation of the same password and she has no idea how she got hacked. I didn’t ask her what that password was, nor did she share that information (smart), but I spent some time going back and forth with her, giving her tips of what to do.
The thing is, this is more common than it should be, but it seems like most people are too worried or nervous to talk about it, same as in the commercial world (think about all these big box stores or companies that take months if not longer to come out about a compromise). How do we change this? Well one, it’s not a death sentence if you’re hacked, and two, it’s not something you should be embarrassed about. Hackers are getting better, and we’re all sharing more information on the internet than ever before.
If you’re an influencer or are aspiring to be an influencer, you’re probably posting a lot. Well, what are you posting about? Pictures of where you live? Places you frequent? Your family? Throwbacks from high school? Embarrassing stories? Now take a second to think about how compiling all that information could paint a pretty substantial file on you. Look through the last few weeks or month of your Instagram posts and stories, your blog posts, your Facebook.. Now think about it from an outsider’s point of view. If you were someone else looking into your life from the outside, what kind of story are you telling? Do your pictures have any sensitive information (address, delivery boxes, favorite coffee shops, and don’t laugh, I’ve seen it all)? You might ask how your favorite coffee shop could be considered sensitive. Well, if you go there every Saturday morning at 11am, and then again every Tuesday afternoon at 2pm, you’re setting a pattern for yourself. All I have to do is set up shop an hour before you get there and look busy. Then I can use a multitude of tools in an attempt to hi-jack your information, or I could just strike up a conversation with you based on the information I already have. You say you don’t talk to strangers? Well what if I know your favorite obscure band or sports team and I happen to have that shirt on? You’re probably going to be more inclined to at least have a short conversation with me now aren’t you?
Scenario 2
Now let’s think about those security questions we’ve answered again and again when we set up an account so if we lose our password we can still get in. What city were you born in? What was your first pet’s name? What was your first car? What is your mother’s maiden name? What is your paternal grandfather’s first name? What is your best friends first name? What is your favorite color? What is your favorite food?
Now remember when the quarantine started and everyone was posting quizzes on Facebook and Instagram? Let’s take a second and think about what kind of questions they were asking.
I’ll give you a couple minutes.
Now what kind of information are we seeing here? They are a lot of the same questions, aren’t they?
How many times did you see something like this go around? Well, I’m glad that at least went somewhat viral because it’s true. Yes, of course that isn’t a real quiz, they’re just making light of the fact many of these quizzes are indeed allowing the bad guy to learn a lot of information about you.
I’ve talked a little about phishing and social engineering, both here and on the podcast, but it’s worth repeating. People share a lot of information about themselves on the internet. We all have a desire to be liked, to be respected, to fit in. Social media makes that a lot easier, but it also raises the risk of what information people can use when they are targeting someone or something. You can change your privacy settings to avoid public posts, but what happens when you get a new friend request from an attractive individual you may or may not have met at the bar last weekend? Do you blindly accept it? This is another way that attackers are able to bypass the “friends only” settings. Again, we all want to be liked and to have friends. It’s not a bad thing, as long as we recognize it as a potential bias or flaw at times.
Scenario 3
Sometimes I join random groups on Facebook so I can get an idea of what the non-tech world is doing. Sometime last week someone posted this in one of those groups:
My first reaction was confusion, then a little bit of shock, then a lot more confusion. Maybe it’s a generational thing, but then again I’m not that old and I still can’t get behind TikTok either. Or maybe I’m just paranoid because I work in cybersecurity.
By the end of the day I think there were over 100 comments on this, many of them showing pictures that they’ve airdropped to strangers in Target, or have received themselves, waiting in line at the grocery store or walking through the airport. What?! Airdrop is really handy at times, I get it. I’ve used it a handful of times, but my airdrop is usually turned off, and when it’s on, I have it so only contacts can send to me. I also don’t have many contacts, so it might as well be off 😉
I then did a quick google search of airdrop attacks, I’m talking two minutes total here. There’s this one from December 2019 where hackers can block iPhones and iPads via Airdrop attacks. There was this one in August of 2019 that would show your phone number and passwords to malicious third parties. Oh and don’t forget, you can also hide malware inside images using an old technique known as steganography.
Can we see why hacking might be occurring more and more?
Here’s an experiment, influencer or not. Look back at the last few months of your posts across your most used social media outlet. Or even better, look back to your first Facebook or Instagram pictures and posts. What kind of information are you finding?
How about some potential good news. In 2016, Norton released a report where they surveyed 21,000 people in 21 countries. According to this report, 76% reported sharing passwords and engaging in risky behaviors despite knowing they need to actively protect themselves; 44% said they felt overwhelmed by the sheer amount of information they’re responsible to safeguard (raises hand, guilty); and 35% have at least one unprotected device. Does it get better with the more recent 2019 report? Depends on how you define this word “better”. A little over 10,000 individuals from 10 countries were polled, with 66% saying they have chosen not to download an app or use a service based on its privacy policy (good!); 84% reporting taking at least one step to protect their online activities; 60% saying it is impossible to protect their privacy or that it is too late to do so because their information is already out there; and 66% that are worried their identity will be stolen.
There’s still a lot to do, we are seeing a little progress between 2016 and now, but we can see there is still a lot of fear out there. The 84% that reported taking steps to protecting their online activities is huge, but it was also reported that these were very basic activities such as clearing cookies or limiting information shared online, not using VPNs, using anonymous payment methods, or even going so far as to delete social media accounts. Progress is progress though. Little by little I hope people will start to see they don’t have to lock down their entire lives, but they can take steps to make it more secure at least.
Do you want help in securing things? Let me know, I can try and help out.
499 comments
Hello everyone my names are ALEX JACKSON from the UK, I want to use this golden medium to appreciate Doctor Abdul a great spell caster for helping me retrieving back my relationship with my ex lover when he ended and turned back on me for quite a long time now (6 months ago). He performed a spell for me and within 48 hours after the spell had been cast I received a text from my ex saying that he is sorry for the pains and tears that he had caused me and that he will not do such a thing to me again in his life. I was surprised but later accepted him back again. Anyone that is in the same line of problem or different one that wants to contact a spell caster should happily contact Doctor Abdul now on this email doctorabdulspellcaster@gmail. com or message him through his Whatsapp +2348108728256
I’m Andrew a hairstylist with a passion for capturing life’s beauty, I was introduced to the world of Bitcoin by a client. Intrigued by the potential, I decided to explore it further. But my journey took a dark turn when I fell victim to a cunning scam. A deceitful individual lured me into a false investment scheme, leaving me heartbroken and financially devastated. My stolen Bitcoin seemed lost forever.
Desperate and disillusioned, I turned to the internet for answers. I stumbled upon NAKAMOTOGUARD, a reputable recovery firm known for its expertise in combating crypto scams. With a glimmer of hope, I reached out to their team, through their GMAIL @ NAKAMOTOGUARD.COM OR TELEGRAM @ //NAKAMOTOGUARDHQ pouring out my story and seeking their help.The NAKAMOTOGUARD team, dedicated to fighting financial injustice, listened attentively to my plight. They immediately recognized the hallmarks of a sophisticated scam and assured me that they would do everything in their power to help me recover my stolen Bitcoin.
Their team of experienced investigators sprang into action, meticulously tracing the digital trail of the stolen funds.
Weeks turned into months, and my hope began to dwindle. But the NAKAMOTOGUARD team remained steadfast, undeterred by the complexities of the case. They relentlessly pursued every lead, leaving no stone unturned in their pursuit of justice. Finally, a breakthrough! The team uncovered crucial evidence that led them to the scammer’s hideout. With lightning speed, they coordinated with authorities to apprehend the perpetrator and recovery my stolen Bitcoin.
My joy knew no bounds as I witnessed the return of her hard-earned funds. I was overwhelmed with gratitude for the NAKAMOTOGUARD team’s unwavering dedication and expertise. Their unwavering commitment had not only restored her financial security but also renewed my faith in the power of justice. My story serves as a powerful reminder that even in the face of adversity, hope can prevail. With the right support and determination, victims of crypto scams can reclaim what was lost and find solace in the knowledge that justice can be served.
DID YOU LOST YOUR CRYPTO? DO YOU WANT TO RECOVER YOUR STOLEN BITCOIN,
BEST ONLINE HACKERS
Hello guys my name is WISDOM ALFRED I was happy I went online to look for a hacker because I didn’t regret it I got $40,000 from this great hackers guys am happy my family and business is back again they do various hack
support@tsutomushackexpert.com
BLANK ATM CARD
PAYPAL HACK TRANSFER
WESTERN UNION HACK
MONEY HACK
BITCOIN INVESTMENT
I guess I am happy I came across them they are legit, and I am a living proof. I swear they are contacts them today for your hack on Email: tsutomushimomurahacker@gmail.com, Telegram @TsutomuShimomurahacker or WhatsApp via: +1-256-956-4498
My worst nightmare was going into cryptocurrency investments, I even referred my co-workers to invest with the platform, I lost $200,000 worth of cryptocurrency to this sophisticated fraudulent Ponzi scheme laid out by scammers to defraud innocent unsuspecting investors. I was assured it wasn’t a scam but going forward, I wasn’t able to make more withdrawals from my investment funds. I felt guilty for the loss of my co-workers and wasted no time recommending them to reach out to DARKRECOVERYHACKS RECOVERY FIRM for retrieval of lost investment funds after I witnessed their incredible assistance in funds recovery. Seeking a solution to the predicament I was facing I connected with DARKRECOVERYHACKS RECOVERY FIRM and they helped recover my stolen funds, without doubt, they helped recover all our losses. I advise against investment platforms that seem too good to be true and wholeheartedly recommend DARKRECOVERYHACKS RECOVERY FIRM for retrieval of lost or Stolen crypto funds. Thanks to DARKRECOVERYHACKS RECOVERY FIRM I was relieved from the guilt of my co-workers’ losses, " DARKRECOVERYHACKS @ GMAIL.COM/TELEGRAM @ DARKRECOVERYHACKS " is what any victim of scam needs to recover back their lost funds, they gave me back my life and lost funds back.
In my misery suffering financial instability, SILVERCRACKX Recovery Corp were the ones that helped me with RETRIEVING BACK MY LOST INVESTMENT FUNDS. I never imagined or believed lost funds can be recovered once sent until I connected with SILVERCRACKX Recovery Corp (silvercrackx @ GMAIL.COM) through their recommendations I saw online on my research for possible solutions to the predicament I was facing, recommendations from scam victims who regained control of their finances with the assistance of SILVERCRACKX Recovery Corp (TELEGRAM@silvercrackx). SILVERCRACKX Recovery Corp assured me my funds will be recovered from the onset and did exactly that, my $1.3 million worth of cryptocurrency investments I thought I had lost forever were traced and retrieved back into my bank account. Gosh !!!! I was amazed by the news my funds had been sent back to my account and on checking to verify, it was there, my thanks knows no bounds for their relentless efforts and actions to make sure I get back my money. I also came to know I wasn’t the only one that had gone through such scammers cunning fraudulent schemes, sharing my story is with hope to create awareness of the possibility of recovery. THEY CAN ALSO DO THE SAME FOR YOU AND I HOPE AM ABLE TO HELP SOMEONE OUT THERE GET THE JUSTICE YOU DESERVE.
Hello everyone my names are ALEX JACKSON from the UK, I want to use this golden medium to appreciate Doctor Abdul a great spell caster for helping me retrieving back my relationship with my ex lover when he ended and turned back on me for quite a long time now (6 months ago). He performed a spell for me and within 48 hours after the spell had been cast I received a text from my ex saying that he is sorry for the pains and tears that he had caused me and that he will not do such a thing to me again in his life. I was surprised but later accepted him back again. Anyone that is in the same line of problem or different one that wants to contact a spell caster should happily contact Doctor Abdul now on this email doctorabdulspellcaster@gmail. com or message him through his Whatsapp +2348108728256
Hello everyone,
I’d like to take this opportunity to express my heartfelt gratitude to Dr. Jakuta, a powerful spell caster who helped me reunite with my ex-lover after a painful breakup. For six long months, I thought our relationship was over, but Dr. Jakuta’s spell brought us back together. Within 48 hours of the spell being cast, my ex reached out, apologizing for the hurt and promising to make amends. I was overjoyed and welcomed her back into my life. If you’re facing similar relationship challenges or other difficulties, I highly recommend contacting Dr. Jakuta. His spell casting abilities are truly remarkable.
You can reach Dr. Jakuta via WhatsApp: +2349161779461
Email: doctorjakutaspellcaster24@gmail.com
Website: https://urgent-lovespell-caster.zarlasites.com
Hello everyone,
I’d like to take this opportunity to express my heartfelt gratitude to Dr. Jakuta, a powerful spell caster who helped me reunite with my ex-lover after a painful breakup. For six long months, I thought our relationship was over, but Dr. Jakuta’s spell brought us back together. Within 48 hours of the spell being cast, my ex reached out, apologizing for the hurt and promising to make amends. I was overjoyed and welcomed her back into my life. If you’re facing similar relationship challenges or other difficulties, I highly recommend contacting Dr. Jakuta. His spell casting abilities are truly remarkable.
You can reach Dr. Jakuta via WhatsApp: +2349161779461
Email: doctorjakutaspellcaster24@gmail.com
Website: https://urgent-lovespell-caster.zarlasites.com
As a photographer, I’m used to capturing life’s precious moments. But little did I know, my life was about to take a dramatic turn. One of my customers introduced me to bitcoin, and I was excited to learn more about this new asset class.
But little did I know, a scammer had been watching our every move. They struck when I least expected it, using a sophisticated phishing scam to gain access to my wallet. The scammer made off with a significant amount of bitcoin, leaving me devastated. I was heartbroken and felt betrayed. They had trusted me to guide them in this new world , and now they felt like they had lost everything. I felt responsible and didn’t know how to make it right.That’s when I discovered NAKAMOTOGUARD. I had heard of their expertise in recovering stolen cryptocurrency, and I knew I had to reach out. I contacted their team on GMAIL:@ NAKAMOTOGUARD.com OR TELEGRAM @ NAKAMOTOGUARDHQ, and they quickly sprang into action.
When NAKAMOTOGUARD informed me that they had successfully recovered the stolen bitcoin, I was overjoyed. They had thought all was lost, but thanks to NAKAMOTOGUARD, they were reunited with their bitcoin.
Thanks to NAKAMOTOGUARD, my faith in bitcoin and the cryptocurrency community has been restored. They continue to invest and learn, and I’m proud to have been a part of their journey.
After establishing trust, a contact on Telegram persuaded me to engage in Bitcoin trading on the website HSBTRADE. They provided specific times for buying and selling, and I started with small investments that yielded profits. However, I was encouraged to add more funds in order to maximize my rewards. The trading involved 4 or 5 options, and it continued for two weeks. I noticed that my contact was also making trades on my behalf, but at a higher rate, which made it appear legitimate. At one point, I attempted to withdraw funds to my bank account, and the process went smoothly. However, when I invested in larger trades worth $88,000 and my trades were due for withdrawal, the transfer was blocked. Customer service informed me that I needed to pay taxes on my profits before making any withdrawals. I tried to use my account balance within HSBTRADE to pay the tax, but I was instructed to send funds from another account to a provided address. When I questioned my contact about this, they assured me it was normal and urged me to pay the tax. However, I felt that I had gone too far and did not want to risk investing more money. I am uncertain if my funds will be released even if I pay the tax to HSBTRADE, but I do not believe they will. Recently, I discovered a trustworthy source for retrieving my funds that were stuck on their website. I immediately sought assistance from COREASSETINC RECOVERY FIRM, who carefully examined all the details I provided about the scam company and successfully recovered my funds effortlessly. I am certain that the previous company was a scam, and even before reaching out to COREASSETINC RECOVERY FIRM, I had confidence that they would retrieve my funds since I contacted them just a week after noticing the withdrawal issues. For those who may be wondering if their lost funds can be recovered, I can assure you that it is possible with COREASSETINC RECOVERY FIRM. I am a witness to their success in asset recovery, and I encourage you to seek their assistance today to reclaim your lost digital assets, everything about the investment platform seemed legitimate, I was betrayed.
SEEK RECOVERY ASSISTANCE FROM THE RIGHT SOURCE TO RECOVER BACK YOUR LOST FINANCES.
( COREASSETINC @ GMAIL.COM OR TELEGRAM: @ COREASSETINC)