Action Fraud is warning people to provide an extra layer of protection and enable the 2-step verification (2SV) option, as more than 33,600 people’s social media or email accounts were hacked last year.
Data from the national fraud and cybercrime reporting service Action Fraud shows that more than 33,600 people have reported that their online accounts have been hacked since August last year, with victims losing a total of £1.4 million. .
Action Fraud is launching an awareness campaign on social media and email account hacking for this year’s Cyber Security Awareness Month, encouraging the public to protect their online accounts from fraudsters.
Action Fraud Deputy Director Adam Mercer said yesterday:
“Cyber attacks and hacking are committed by faceless cybercriminals who target unsuspecting victims looking to take advantage of unsecured social media and email accounts. As the top cybercrime reported in the last fiscal year, taking action And making sure to lock down your accounts is even more important.
“Protect yourself from fraudsters trying to steal or access your valuable information by making sure your social media and email account passwords are secure. All of your Words must be different and not shared with anyone else. If you have the option, enable 2-step verification to ensure you have double protection for all your accounts.”
In reports to Action Fraud, various hacking methods were described, including:
On-Platform Chain Hacking
This is when a fraudster takes control of the account and starts impersonating the legitimate owner. The goal is to convince people to reveal verification codes that are sent to them via text. Many victims of this type of hacking believe it’s a friend sending them the message, however the shared code was linked to their own account and the impersonator can now use it to access their account. Typically when an account is hijacked, fraudsters gain control of the account by impersonating the original owner of the account, promoting various fraudulent schemes.
Leaked passwords and phishing
Another important method of hacking reported is information used in data breaches, such as leaked passwords, or account details obtained through phishing schemes. This becomes common because people often use the same password for multiple accounts, so a leaked password from one website can make many of their online accounts vulnerable to hacking.
What can you do to avoid becoming a victim?
- Use strong and different passwords for your email and social media accounts. Your email and social media passwords should be strong and different from all your other passwords. Combining three random words that each mean something to you is a great way to create a password that’s easy to remember but hard to crack.
- Turn on 2-step verification (2SV) for your email and social media accounts. 2-Step Verification (2SV) gives you double protection, so cybercriminals can’t access your email or social media account even if they have your password. 2SV works by asking for more information to prove your identity. For example, a code is sent to your phone when you sign in using a new device or change settings like your password. You won’t be prompted every time you check your email or social media.
If you live in England, Wales and Northern Ireland and have been a victim of fraud or cybercrime, report it at www.actionfraud.police.uk or by calling 0300 123 2040. In Scotland, victims of fraud and cybercrime must report to Police Scotland. At 101.
Suspicious emails should also be sent to SERS.[email protected].
Learn how to protect yourself from fraud: https://stopthinkfraud.campaign.gov.uk