Do you think hackers aspired to be criminals when they were kids? There are so many in the world we live in now, I sometimes wonder how they got their start.
Terrorizing us with ransomware, malware and phishing scams are just a few of their devious tricks used to rip us off. With so many attacks, it's difficult to stay ahead of them.
Welp, here we go again. Another massive data breach has just been discovered and if you have used this travel site, hackers could have your banking and personal data.
Thankfully, you can always depend on us here at Komando.com to keep you safe!
Have you used this travel site?
We're talking about the popular travel website, Orbitz. It's owned by Expedia Inc. and recently suffered a major data breach impacting over 800,000 registered customers. Wow!
Hackers were able to get their hands on both personal and banking data. Here is a list of potentially stolen info:
- Customer's full name
- Payment card information
- Home/billing address
- Date of birth
- Email address
- Phone number
- Gender of customer
The company said that the breach happened sometime between October 1, 2017, and December 2017. However, the stolen information was from a legacy travel booking platform that contained customer data from over a nearly two-year period. The impacted timeframe is from January 2016 to December 2017.
Customer information from other travel sites that use Orbitz as a booking engine may have also been compromised. One example is American Express. Its site Amextravel.com was part of the breach. As of now, there's no word on what other companies were impacted.
Is Expedia doing anything to help impacted consumers?
Expedia put out this statement on the breach, "We are working quickly to notify impacted customers and partners. We are offering affected individuals one year of complimentary credit monitoring and identity protection service in countries where available.
Additionally, we are providing partners with complimentary customer notice support for partners to inform their customers if necessary."
There has been a website set up by the company where customers can find out more details about the breach. Affected customers can also sign up for the free a credit monitoring service through this site.
Click here for more information.
Critical steps following a data breach
Now that we know banking information has been exposed in this breach, take the following actions:
Check those bank statements
Frequently checking your bank statements for suspicious activity is a good rule of thumb. It's an even more critical procedure following a major data breach involving financial accounts. If you see any strange activity, report it to your bank immediately. It's the best way to keep your financial accounts safe and if your credit or debit card was part of the breach, your bank will issue you a new one.
Strengthen account security
Two-factor authentication is something everyone should set up for all sites that offer it. Also known as two-step verification, it means that to log into your account, you need two ways to prove you are who you say you are. This is an extra layer of security that will help keep your accounts safe.
Has your email address been hacked?
This is a critical step and it will only take a few seconds of your time. You need to know if your credentials are part of any recent data breach. The best way to find out if you're impacted is with the Have I Been Pwned website.
It's an easy-to-use site with a database of information that hackers and malicious programs have released publicly. It monitors hacker sites and collects new data every five to 10 minutes about the latest breaches.
You can even set up alerts to be notified if your email address is impacted in the future. Click here to find out if your email address has been compromised.
Change your password
Whenever you hear news of a data breach, it's a good idea to change your account passwords. This is especially true if you use the same credentials for multiple websites. If your credentials are stolen from a breach, criminals can test them on other sites to log into those accounts as well.
Beware of phishing scams
Scammers will try and piggyback on data breaches like this. They will create phishing emails, pretending to be from the affected company, hoping to get victims to click on malicious links that could lead to more problems. You need to familiarize yourself with what phishing scams look like so you can avoid falling victim to one. Take our phishing IQ test to see if you can spot a fake email.
Russian hackers are after your tax return, how not to get hacked
Ugh! It's that time of year again. Yep, you guessed it … tax season. Due to the massive Equifax data breach that was revealed last year, you probably shouldn't wait until the last minute to file. Why?
Because nearly 150 million Americans had their Social Security number stolen and fraudsters could try and beat you to the punch. That's why you need to know the safest way to file your taxes so you won't be hacked.