|A Screenshot to strike fear into any computer users heart|
If there’s anything scarier than the blue
screen of death telling you your hard drive has died, it’s getting this
message on your screen. It means that your data and all your files have been captured unless you pay up to get them back. These days, even if you do pay, chances are
only around half the time that you will so its not advised and paying the extortionists just
encourages them, so this section is mostly about preventing data capture in the
first place. Very occasionally professionals can rescue your data with or without paying the ransom – so listen
to Leo explain how it’s done here. However, prevention is far better and gives you the best chance of being able to recover it if they do.
How to prevent ransomware attacks
1. BACK UP YOUR DATA - This used to mean having an external hard drive attached to your computer, but not only can hackers also encrypt that, but you could lose it in other ways such as a fire, a flood or theft. These days it’s wise to kept at least one copy in the cloud as well and to have that happen automatically so you don’t have to remember to back it up.
It’s good to
still have a hard copy, because data breaches, corruption and power outages can
happen to big companies too, though perhaps less often. Almost any video on
this topic on YouTube is an ad for some type of cloud -based service which comes at various price points. I’m currently trying one on a 14-day free trial but speak to your IT person about the best one for you, especially if you
are in business or don’t want to lose your thesis or family photos. Keeping back -ups will also
help if your computer dies of natural causes.
2. MAKE SURE YOUR ANTIVIRUS SOFTWARE IS UP TO DATE – always do the recommended scans and updates to prevent malware getting very far.
GET A PASSWORD MANAGER –
that way you only have to remember one password and of course DO NOT WRITE IT
4. TAKE THE USUAL PRECAUTIONS with strange emails and messages to avoid your computer being infected. This will also help to protect you against things like identity fraud.
5. Since starting to write this I've come across an excellent new site by the Australian Cybersecurity Centre. This covers most of the above in more detail especially how to secure specific devices according to brand, how to secure your emails, bank accounts and social media accounts. One thing which I have omitted is how to set up MULTI FACTOR AUTHENTIFICATION for all those accounts, but you can see how to do it for your devices on this site.
Identity fraud is basically using your data or personal information to secure some advantage. Find out more here. According to European Commission research between 2018 and 2019, identity fraud was the second most common type of fraud in the EU after monetary scams and accounted for around 32% of online scams. The report also says that almost 50% of Europeans had experienced some type of cyber crime during that period. While Spam emails were by far the most common source of identity fraud (50%) followed by phone calls (39%) then ads. (5%), Text messages (4%) and Social Media (3%), it can also occur via spy cams and data loggers, data breaches or just when shopping at a supermarket. You can also see if your phone or email have been involved in a data breach by checking Have I been Pwned? (Mine have been subject to at least two!)
Keep a good distance – one of the few blessings of COVID, and be especially careful when using public WIFI networks and ATMs. Use your hand to shield your password information. Always shred old bank cards and any letters or notifications with your account or personal details on them. Arrange for your neighbours or family to collect your mail if you go on holiday and check your accounts frequently to make sure that all the charges are legitimate.
This is how easy it is to steal your information when using public WIFI
In the UK police are so concerned that they are advocating AIR -GAPPING. In other words, if you can afford to have a second computer, do all your online transactions on that and keep your other files separate and safe.
Here's a nice short video about preventing identity fraud from the US Federal Trade Commission.
The only thing I'm not sure about is the bit at the end about credit
reports. They may not be as readily available outside the USA.
If you think you’ve been a victim of identity fraud
If you suspect that someone is using your name or your accounts, you’ve lost your wallet, or your personal details have been compromised, do the following IMMEDIATELY.
- Notify the issuing authority about the loss of any important documents or information e.g. credit cards, driver's licence, social security #, passport or account details, medicare cards
- Close any compromised accounts
- Notify the credit reporting
agency, to prevent other accounts being opened in your name
- File a police report (if
they’ll accept it) or advise the cybercrime unit in your region
- Report cybercrime to ReportCyber.
- Report scams to Scamwatch.
- Contact IDCARE if you've experienced identity theft in Australia or New Zealand
- Report data breaches and privacy complaints to the Office of the Australian Information Commissioner.
- Apparently you can also request consumer credit reports (free) every three months from the following:
- Equifax, phone 138 332
- Experian, phone 1300 783 684
- illion, phone 1300 734 806
In The USA
The FTC website is very helpful and has a step-by-step guide which deals with many types of fraud including property being rented in your name, investment and securities, tax fraud and so along with appropriate addresses. Although it’s for the USA, it’s one of the few sites I've found which offers useful information AFTER you have been scammed.
In The UK - Which?