Hacking of institutions

With all these reports about hacking and Scams, what do I need to know?

The internet is an amazing resource. I have unlimited availability to unlimited subjects, all through a convenient slim box that sits on my knee.  

I once heard someone say that they could show their Grandma a small box they keep in their pocket that can give you all the information you might ever need instantly including traffic reports, the latest news, watching TV or films and is a camera taking moving colour pictures and even allows you to make or receive phone calls and small messages she wouldn’t believe you. If I then told her that the thing it is most used for is taking pictures of my cat and letting my mates see them she’d have me sectioned!

Remember, there are dark and dodgy places on the internet just like anywhere else in the world. The problem is that the criminals on the internet exploit the innocence and naivety of users. These crooks are exceptionally clever and can make there scams very believable

The first and most reported are when Banks, Businesses or Academic institutions are hacked.

We have no control over their systems holding our information we have to trust them with our information.  These are like the recent news items about TalkTalk for an example and when the information is stolen it can be sold to a wide variety of scammers and it is usually the case that your existing password is tried for any other internet service. 

I have a lot of my customers who have only one or two passwords that they use for most of their internet security. I know it is a real pain but I strongly recommend that every service that needs a password will have unique one and please don’t ever disclose them to anyone. No reputable Internet based supplier will never ask you for your password.

I know it isn’t a great idea to write them down in a book but I also understand it becomes very difficult to remember them so use a book but please keep it away from your computer.

I have been talking to my clients about the possibilities open to them when generating something suitable.My advice is to consider the following tips

• Make your password at least digits long
• Make sure that you have upper and lower case letters
• Make sure that you have numbers
• Use special characters.

Most systems asking for a password will prefer this but some won’t accept them, if they don’t the web page will make it very 

So for example using my name I could use R1chard. It is 8 digits long, has upper and lower case letters, a number and a special character. I have started with a capital letter, replaced the letter I for a number 1 and added a full stop at the end. However it is usually recommended not to use your own name and don’t ever name your pet after your password.

I’ll put out another blog out soon about Hacking, Phishing and Scams in the next couple of days.

Weren’t we told that computers would be more reliable and faster?

And what happened to the paperless office we were supposed to be enjoying by now?

It has been announced that M&S suspended its website last night after a technical problem meant customers were able to see other people's details - http://bbc.in/1KER86q

Unlike the TalkTalk fiasco they generated their own problems. Their servers weren’t hacked so this has to be an Internal problem. I used to do that job for the NHS and the problems with things like that were alwys down to one of their staff making mistakes (excuses with your P-45)

The Money saving expert website have exposed a huge data security flaw that affects both the Halifax and Bank of Scotland. You can see it here http://bit.ly/1HcuQJ1

All this on the recent news that account information held for the customers of TalkTalk has been hacked - again! There hasn't been any concrete news yet to say what has been lost or stolen. I think that in reality there  will be a lot of their customers who will be scrutinising their accounts rather closely for now. I know thwt I would!

But here is a fly in the ointment. Nothing has been announced about what TalkTalk are going to do to identify what is a breach of security as a result of hacking  and what they will consider as scammers who are ripping people off. I have found another article on the Money Saving Website that is worth a look  http://bit.ly/20arpOH

It is a really good website.

So all I can suggest is that you change your passwords if you haven't done so already, check your statement(s) closely and report any problems to TalkTalk and your bank immediately.

My next few blogs will show you how you identify Phishing and other scammers

TalkTalk hacked

Police are investigating a "significant" cyber-attack on Wednesday October 21which may have led to customers' credit card and bank details being compromised.

TalkTalk said that names, addresses, dates of birth, email addresses, telephone numbers, TalkTalk account information, and credit card and bank details may have been accessed in the attack.

At the time of publishing, TalkTalk customers were still unable to access the account section of the website. What's most worrying, however, is that TalkTalk says that "not all of the data was encrypted", potentially making it easier for intruders to access.

TalkTalk has confirmed that it received a ransom note from somebody claiming to be responsible for the attack. TalkTalk's chief executive Dido Harding told the BBC: "I personally received a contact from someone purporting - as I say, I don't know whether they are or are not - to be the hacker, looking for money."

Reports suggest that it is possible that the information would be sold off on the dark web, a part of the World Wide Web that requires special software of authorisation to access. If bank details have been stolen, the value of the information, he said, would depend on a number of factors.

What you need to know

As always I suggest that you immediately change your banking and online passwords. I know that I keep saying this but it is important that you have different passwords for online accounts.

It is a good idea that you monitor your bank accounts for any signs that fraudulent activity that may have taken place. TalkTalk have suggests checking your credit report.

If you use the Money Saving Expert website http://ow.ly/TLvSq you can check your credit status. It was once felt that if you were continually checking your own credit status you could compromise your score but this is not the case and you can see more about this here http://ow.ly/TLxDX

If you feel that there is a problem then contact both your bank and national fraud reporting centre Action Fraud, which can be reached on 0300 123 2040.

To make any changes to your TalkTalk account, you are advised to phone TalkTalk on 0800 083 2710 or 0141 230 0707.

I have a family who were contacted by someone claiming to be from Talk so please be cautious with any emails or calls you receive from anybody claiming to be from the company. If people have access to your personal information, it will be easier for them to craft a convincing fraud email.

Do everything possible to verify the legitimacy of the person, including ensuring the email is from a legitimate @talktalk.co.uk address. In particular don’t follow any links from any email claiming to be from TalkTalk, if you are concerned create your own e-mail.