How to Avoid Wrong Number Scams

How to Avoid Wrong Number Scams

“Hi!”

Have you received random text messages from numbers that you don’t know?  Sometimes, they just say “Hi”, or they appear to be for someone else and mistakenly sent to you.  Either way, they look like the come from real phone numbers.  Is it safe to respond to these messages, or are these a scam?

Most likely these text messages are a scam, not just a chatty Kathy trying to make friends.  Sometimes these messages just start out with a mysterious “Hi”.  The scammer is hoping the person on the other end will be intrigued enough to respond.  If they get a response, they now know they have reached a working number, and will likely call or text you more in the future.

Identifying potential scams

Some scammers use messages that seem like they are intended for someone else.  They might say something like, “Hi, Mike. I had a great time at dinner last night”, or “Hi Susan, I really enjoyed our lunch meeting yesterday”.

Many people respond out of kindness, letting the person know that they have the wrong number.  What they don’t realize is that is exactly what the scammer wants.  At first, they may sound friendly or apologetic, maybe even try to start up a conversation.  But eventually the scammer will send a link to a malicious website or ask for money as part of a bigger con.

If you are unsure whether a wrong number message is a scam, proceed with caution.  The scammer may send messages for days or weeks before doing anything suspicious, or they may use seemingly harmless techniques, such as sending a link to a cool product to check out.  However, this could be a link to a malicious website or to their landing page.  If this is the case, any personal information or credit card numbers entered on the website will be available to the scammer.

How to avoid wrong number scams

Here are some best practices to avoid falling for text message scams like this one.

  • Avoid responding to unsolicited text messages from unknown numbers, even if they seem harmless.
  • Don’t click on links sent in text messages, even if the person seems friendly or has been messaging you for weeks.
  • Type in any links to a site directly into your browser instead of clicking provided links in text messages or emails.  Links can be made to appear to go to one site, while routing you to another site.  They may even go so far as to create a fake site that looks like the real site.
  • Always double-check site URLs before attempting to log in or enter in personal information.
  • Check what options your mobile phone has for blocking and reporting suspicious senders.  Here are some instructions for iPhone (iOS) and Android.

It is important not to let your guard down, as these are tactics commonly used by scammers.  Remember, these scammers can be tricky.  If you find yourself unsure about the legitimacy of a text message, it is best not to respond.​

If you are ever unsure if you have been the target of a scam, you can talk to one of our technicians at our storefront in Pembroke, GA.  We are open from 8am to 5pm, Monday through Friday, closed for holidays.  We normally service Savannah, GA and the surrounding areas, such as Skidaway IslandTybee IslandStatesboroPoolerRichmond Hill and Hilton Head SC.  If you are located outside of the Greater Savannah area, we are always open to working with clients from in any area if the partnership makes sense.  if you are concerned about the security of your online information, we offer a service to scan the Dark Web for our business clients.

 

 

How Does the Dark Web Impact Small Businesses?

How Does the Dark Web Impact Small Businesses?

Identity theft is an unfortunate occurrence that is all too familiar with most business owners, but do those individuals know where the compromised data will end up? Often, these business owners are unaware of the virtual marketplace where stolen data is purchased and sold by cybercriminals; a place known as the “Dark Web”.  An article on Lexology explores what the Dark Web is, what information is available for purchase there and how it impacts small businesses.

What is the Dark Web?

The Dark Web, which is not accessible through traditional search engines is often associated with a place used for illegal criminal activity. While cybercriminals tend to use the Dark Web as a place to buy and sell stolen information, there are also sites within it that do not engage in criminal activity. For many, the most appealing aspect of the Dark Web is its anonymity.  Our previous article, Shining Light on the Dark Web describes this little-known section of the internet in greater detail.

What is for sale on the Dark Web?

Information sold on the Dark Web varies, and includes items such as stolen credit cards, stolen account information from financial institutions, forged real-estate documents, stolen credentials and compromised medical records. Even more alarming, the Dark Web contains subcategories allowing a criminal to search for a specific brand of credit card as well a specific location associated with that card. Not only can these criminals find individual stolen items on the Dark Web, but in some cases, entire “wallets” of compromised information are available for purchase, containing items such as a driver’s license, social security number, birth certificate and credit card information.

What is stolen personal information used for?

When stolen information is obtained by criminals, it can be used for countless activities like securing credit, mortgages, loans and tax refunds. It is also possible that a criminal could create a “synthetic identity” using stolen information and combining it with fictitious information, thus creating a new, difficult to discover identity.

Why are stolen credentials so valuable?

Stolen user names and passwords are becoming increasing popular among cybercriminals, but why? Identity thieves will often hire “account checkers” who take stolen credentials and attempt to break into various accounts across the web using those user names and passwords. The idea here is that many individuals have poor password practices and are using the same user name and password across various accounts, including business account such as banking and eCommerce. If the “account checker” is successful, the identity thief suddenly has access to multiple accounts, in some cases allowing them the opportunity to open additional accounts across financial and other services. 

Why should small businesses be concerned about the Dark Web?

Since the Dark Web is a marketplace for stolen data, most personal information stolen from small businesses will end up there, creating major cause for concern. With the media so often publicizing large-scale corporate data breaches, small businesses often think they are not a target for cybercriminals, however that is not the case. Cybercriminals are far less concerned about the size of a business than they are with how vulnerable their target is. Small businesses often lack resources to effectively mitigate the risks of a cyberattack, making them a prime target for identity theft as well as other cybercrimes.

At a recent Federal Trade Commission (FTC) conference, privacy specialists noted that information available for purchase on the Dark Web was up to twenty times more likely to come from a company who suffered a data breach that was not reported to the media. The FTC also announced at the conference that the majority of breaches investigated by the U.S. Secret Service involved small businesses rather than large corporations.

How can you reduce the risk for your small business?

To reduce the risks of a cybercriminal gaining access to your company’s information or network, you must ensure you have proper security measures in place. The FTC has a webpage that can assist with security options for businesses of any size.  In addition, it is crucial that your employees are properly trained on security, including appropriate password practices.

Allegiance Technology Solutions provides 24-7 Cybersecurity Monitoring services for our Managed IT Service clients. Our service will proactively monitor the Dark Web for you and notify you immediately when your data is found to be compromised.  There is minimal effort needed to protect your business when you partner with us.  We will automatically monitor for your organization’s email domain on the Dark Web. If we find anything floating around out there, you can rest assured that you will be notified, and we will be there to help protect your personal and company data.  When it comes to the security of your company data, we want to provide you peace of mind so you can focus on other areas of your business.

Shining Light on the Dark Web

Shining Light on the Dark Web

What is the Dark Web?

By now, you may have heard of the Dark Web.  Perhaps it was featured on a news broadcast or it came up during a conversation with your techie friends. The Dark Web refers to the infamous private corners of the internet that are only accessible through special software that mask your IP address. On the Dark Web, you can do just about anything, from joining a book club to hiring an assassin. Maybe you want to play a chess match online? Yes, you can do that! Looking to purchase stolen credit card information? You’re in the right place!

 

What makes the Dark Web so… dark? After all, there is much more to it than illegal activity, much like the activities you could engage in on the public internet.

The Dark Web gets its fame for a few good reasons: anonymity and privacy. While innocent activity does occur on the Dark Web, its notoriety comes from the crime that occurs there.

Criminal Activities

Cybercriminals access the Dark Web routinely. In fact, many rely on the Dark Web to obtain the info they require to carry out their crimes. Cybercriminals also come to the Dark Web to sell or exploit the information they have already compromised. Which brings us to the real problem: Cybercriminals are buying and selling stolen data to carry out a plethora of crimes.

For those of us who understand how to protect their identity online, we may feel confident that we’re doing everything properly to prevent our data from ending up in the wrong hands.  But how do we know with certainty that we’re safe? There’s only one true way to find out: A Dark Web scan.

What Is a Dark Web Scan?

Simply put, a Dark Web scan searches for breaches and compromised credentials for your online accounts.  This type of scan can help identify if your email address has been involved in any data breaches and what information was compromised in that breach.

The value of performing a Dark Web scan is undeniable. Uncovering that you’ve been involved in a breach allows you to take steps to ensure that your compromised data isn’t used against you or on your unauthorized behalf. Although it is impossible to recover your stolen data once it hits the Dark Web, there are actions that you can and should perform following the discovery.

If you are interested in seeing if your accounts have been compromised, contact us so that we can perform a one-time Cybersecurity Risk Assessment for your business.  Not only will we perform a Dark Web scan, we will also survey your business environment, compile the data and present you with a report of issues found. Keep in mind that 24-7 Cybersecurity Monitoring services are included in our standard IT Managed Service plans.

Your Data Is found on the Dark Web – Now What?

If you discover that your data is available online, what should you do to protect yourself?  Change your passwords immediately following news of a data breach for any sites and services that you use. Once a breach is identified, changing your password on that account and any other account you may have reused that password on is critical.

Moving forward, passwords should never be reused across accounts. All passwords should be complex, difficult to guess and reasonably long. You may want to consider a few options:

  • Create a passphrase, which many consider best practice.  A passphrase is a series of words that may make no sense as a sentence, but will be harder for cybercriminals to crack due to its length.  Passphrases are much easier to remember than a series of random letters, numbers and symbols.  Here is an example passphrase to help you visualize the idea: Water-Orange-Telephone.
  • Remembering several difficult to guess passwords is no easy feat. A password manager is highly recommended for added security and convenience. This will allow you to store all your passwords in one place, requiring you to remember only one strong, difficult password.
  • Two-factor authentication is also a great added security feature to confirm your identity. 2FA, also known as MFA or Multi-factor authentication, will require a second form of identification aside from your password to gain access to your accounts.  This might come from a code sent as a text message to your phone or email, or in a dedicated authentication app.  If you decide to use an authentication app, use one from a trusted service provider, such as Microsoft Authenticator or Google Authenticator.

A One-Time Scan Will Not Protect You

A Dark Web scan can help you identify current risks and data breaches you have already been involved in, but what happens next? Maybe you were involved in multiple data breaches. You found what data was compromised and you changed your passwords as a follow-up. Does that mean you won’t be involved in another data breach next week? Or perhaps you were already involved in another data breach that has not yet been brought to light. If you don’t continuously search the Dark Web, you are putting yourself at risk of the unknown. The next time your data is compromised, it may go unnoticed or unused for days, months, or even years.  If you aren’t constantly monitoring, you are potentially leaving your data up for grabs for cybercriminals to use at their leisure.

Dark Web Monitoring – The Protection You Need

Allegiance Technology Solutions provides 24-7 Cybersecurity Monitoring services for our Managed IT Service clients. Our service will proactively monitor the Dark Web for you and notify you immediately when your data is found to be compromised.  There is minimal effort needed to protect your business when you partner with us.  We will automatically monitor for your organization’s email domain on the Dark Web. If we find anything floating around out there, you can rest assured that you will be notified, and we will be there to help protect your personal and company data.  When it comes to the security of your company data, we want to provide you peace of mind so you can focus on other areas of your business.

Cybercriminals are relentless and show no signs of slowing down. They will continue to wreak havoc on every industry where they can profit. Much like cybercriminals, the Dark Web is not going away either. Remember, after all, it’s a place where you can innocently join a literature club, or you know, steal someone’s entire identity.​

 

 

5 Key Things to Know About Cybersecurity

5 Key Things to Know About Cybersecurity

Cybersecurity is a critical and continuously growing field that focuses on protecting computer systems, networks, cyber threats, malicious activities, and much more. Now more than ever, technology is present in almost every aspect of our daily lives, and cybersecurity is an essential element of protecting people or company’s data.

The five phases of dealing with cyber-attacks:

  1. Threats: Cybersecurity threats come in many forms, including viruses, malware, phishing attacks, identity theft, and data breaches. Understanding these threats can help you take proactive steps to protect yourself and your information.
  2. Prevention: There are several measures you can take to prevent cybersecurity threats, such as using strong passwords, keeping your software and operating system up to date, and avoiding suspicious links and attachments.  For more information, refer to our other security blog posts and learn some ways to stay safe online.
  3. Detection: It is important to monitor your computer systems and networks for signs of potential cybersecurity threats. This may involve using security software and regularly checking logs and other data for suspicious activity.
  4. Response: In the event of a cybersecurity breach or attack, it is important to have a plan in place for responding quickly and effectively. This may involve isolating affected systems, alerting relevant parties, and conducting a thorough investigation.
  5. Education: Education and training are key to preventing cybersecurity threats. It is important to stay informed about emerging threats and to educate yourself and others about best practices for staying safe online.

Cybersecurity is an ongoing process that requires vigilance, education, and the right tools and strategies to protect your computer systems, networks, and data from potential threats.

Allegiance Technology Solutions provides 24-7 monitoring services for our Managed IT Service clients. Our service will proactively monitor the Dark Web for you and notify you immediately when your data is found to be compromised.  We service the Greater Savannah GA area, so contact us online or call us at 912-216-4050 if you are interested in using our cybersecurity protection services for your business.