General Discussion

malaise

(268,854 posts) Tue Oct 21, 2014, 08:51 AM Oct 2014

Officials warn 500 million financial records hacked-you're going to be hacked - have a plan!

http://www.usatoday.com/story/news/politics/2014/10/20/secret-service-fbi-hack-cybersecuurity/17615029/
<snip>
Federal officials warned companies Monday that hackers have stolen more than 500 million financial records over the past 12 months, essentially breaking into banks without ever entering a building.

"We're in a day when a person can commit about 15,000 bank robberies sitting in their basement," said Robert Anderson, executive assistant director of the FBI's Criminal Cyber Response and Services Branch.

The U.S. financial sector is one of the most targeted in the world, FBI and Secret Service officials told business leaders at a cybersecurity event organized by the Financial Services Roundtable. The event came in the wake of mass hacking attacks against Target, Home Depot, JPMorgan Chase and other financial institutions.

"You're going to be hacked," Joseph Demarest, assistant director of the FBI's cyberdivision, told the business leaders. "Have a plan."

Nearly 439 million records were stolen in the past six months, said Supervisory Special Agent Jason Truppi of the FBI. Nearly 519 million records were stolen in the past 12 months, he said.

------------------------
So much for the regulatory bodies - so much for responsibility from the banks or companies that were hacked - you are going to be hacked - have a plan.

The latest

http://www.dailymail.co.uk/news/article-2801495/Staples-investigating-possible-data-breach.html
<snip>
Earlier this month Sears Holdings Corp. reported a data breach at its Kmart stores.

Other breaches have occurred at retailers including Target, Neiman Marcus, P.F. Chang's, Supervalu and Home Depot.

At Home Deport, 56 million customer credit cards were put at risk of theft by data-stealing malware that had avoided detection.

Target also suffered a huge hack last year, leaving the credit card data of 40 million customers - and personal information of 70 million more - exposed to fraudsters.

Good fucking grief!!!!

2 replies

= new reply since forum marked as read

Highlight:

Officials warn 500 million financial records hacked-you're going to be hacked - have a plan! (Original Post) malaise Oct 2014 OP

We've already been hacked LiberalEsto Oct 2014 #1

What's sad JustAnotherGen Oct 2014 #2

LiberalEsto

(22,845 posts)

1. We've already been hacked

Reply to malaise (Original post)

Tue Oct 21, 2014, 08:59 AM

Oct 2014

Had to file fraud complaints 2 weeks ago with our credit union and got replacement cards for both the credit and debit accounts.

A woman at the credit union told us it was taking longer for us to get replacement credit cards because there were SO MANY replacement cards being created around the nation.

JustAnotherGen

(31,798 posts)

2. What's sad

Reply to malaise (Original post)

Tue Oct 21, 2014, 09:01 AM

Oct 2014

Is so many people have a tendency to blame the business/corporation. They fail to hold the thieves accountable or to the same level of scrutiny they hold a business who was also 'robbed'.

I look at it like this - would we blame the employee of Target who is cashing someone out, if an armed robber comes up the customer they are checking out, holds a gun to their head and says "give me your wallet with all of your pin codes for all cards in it"?

Not likely.

And the key thing is - they are constantly changing their methods - the fraudsters that is. The ability for some of these folks to Socially Engineer an account is just gob smacking. When you listen in on the calls - they prey upon folks wanting to give good customer service, yelling, threats, etc. etc. They also are very good at jamming the customer service/ordering systems.

Example - Three calls placed at the exact same time. First 'caller' gets through the IVR. Now they know the 'break point. Now he hangs up and the three call again. Now they go through the IVR at the same time. While one screams at Customer Service (holding them up) the other two are placing orders on a screen locked account.

You can't see it until all three agents/reps place notes, hang up, and move on to the next call.

They can also do this online - i.e. break the threshold point by clicking through in tandem.

By all means - continue to shred all of your personal documents - it's just smart to do so. But the days of dumpster diving for 'just enough' info to make the break are over.

In the meantime - if a developer can create a software program that makes every single voice/phone and in person point of sale/support system that is out there show real time updates/changes/orders - they will be a billionaire within a year.

It's not easy to say - Oh! Everyone has to go to this system. Won't work - Victoria's Secret has a much different need/p.o.s system than a Wireless Operator. The Wireless Operator has a much different need than a bank. A bank has a much different need than a prescription fulfillment company. Etc. Etc.

Reply to this discussion