15 Million Consumers Exposed in T-Mobile/Experian Hack

T-mobile/Experian Hack

Update 9:00 a.m. ET: An alternative identity theft protection service is now available to T-Mobile customers. Those interested in enrolling should contact Experian at 866-369-0422. You may also enroll in Experian’s ProtectMyID service using this number.

What happened?

On Thursday, T-Mobile disclosed they suffered a data breach involving 15 million current, former and perspective customers’ personally identifiable information (PII).

The attack was a result of cybercriminals hacking into Experian, a credit reporting bureau and identity theft protection provider who partners with T-Mobile to process credit applications on their behalf. Credit applications are commonly required for financing devices and applying for service plans. Continue reading

Scams in March 2014

Scams in March 2014

ATM Scam

What to Look For:Many thanks to Symantec for this helpful video demonstrating how scammers infiltrate ATM machines.  You can read in greater detail on Symantec’s site about how scammers can send an SMS to an ATM and have money spill out of the machine.  TIPS: From this video you can see that if someone is in front of an ATM with a keyboard it warrants attention.  If you see something like this report it immediately to the authorities, NEVER  confront criminals directly.

Jury Duty Phone Scam

What to Look For:  In this particular New Jersey county the scammers are posing as sheriff’s office employees and calling individuals to accuse them of missing jury duty. They then explain to their victims that they can avoid arrest by providing a credit card number or prepaid debit card to pay a fine and have the warrant lifted. TIPS: Check your caller ID.  You will only receive calls from a government agency from a publicly listed government agency phone number.

Foreign Lottery Scam

What to Look For:  You just won the lotto!  Who wouldn’t want to hear that news?  That’s what these scammers are counting on.  The scam: A letter is received declaring you have won a foreign lottery.  The letter also includes a check for some of the winnings. All you have to do is deposit the check and wire them the required non resident taxes to receive your full winnings. TIPS:

PayPal Scam

What to Look For:  PayPal scams abound across the internet.  These scams are popular within the cyber criminal community. They usually come in the form of an alert stating your PAYPAL transaction was declined. TIPS: The best place to understand this scam and see great examples of what a PayPal scam visually looks like is here on the PayPal site.

NetFlix Scam

What to Look For:  Crooks are sending out emails stating your NETFLIX account has been suspended.  You are directed to call an 800 number to clear the matter up.  On the other end of the line is where the scam artist is waiting to get all your personal information acting as a NETFLIX tech agent. TIPS:

  • DO NOT call this number
  • DO NOT click on any links within the email.
  • Contact NETFLIX directly to report the scam. Click here to read more details on this scam.

2013 in the Rearview, and the Security Lessons We’ve Learned

2013 Year in Review
Infographic: Security Lessions Learned in 2013

Infographic: Security Lessions Learned in 2013

To say that 2013 wasn’t a very good year for security is an understatement. From endless NSA leaks to major data breaches at LivingSocial, Adobe, and Target, it’s a year that I hope you won’t forget too quickly. Otherwise you may learn nothing from the security failures, leaving you more vulnerable to becoming a fraud victim yourself. If you want a head start on security for 2014, but the security headlines from 2013 already seem blurry, here are brief reminders of some of the bigger fraud-related news stories, events and failures.

January – The New York Times confirms that it was the victim of a sophisticated attack by Chinese hackers using advanced malware. The hackers used at least 45 different types of malware, only one of which was detected by the firm’s security systems. Continue reading