ONE OF THE BIGGEST PASSWORD DUMPS IN HISTORY
On 21 Jan, 20924 Kim Komando writes about a massive data breach exposed 71 million credentials linked to Facebook, Yahoo, eBay, Roblox and other sites. These passwords were in plain text — meaning hackers could just copy and paste them. Update all your passwords ASAP, and watch out for phishing emails and texts.
Her recommendations on how to best resolve your not falling prey to this breach follows.
Guide for a Compromised Social Media Account
- Sign out of every device. (Often this is an option when changing your password; if this is not offered, be certain to do it.)
- Change your password.
- Report the password hack to the company. This problem is so bad, there’s a dedicated Facebook hacked page. No surprise, there’s also an Instagram hacked page and X’s questionnaire. No TikTok version … yet.
- Check for surprise changes:
- Fake messages or posts. Delete them.
- Connected devices. Hackers add their own devices for easy access to accounts. Get rid of them.
- Third party apps. New apps to track you or steal data may have been snuck in while your account was compromised; remove them.
- Linked accounts. Hackers may have grabbed a bunch of bots or stalker-looking accounts as followers; remove these.
- Your profile photos. Make certain it is you and not anyone else.
- Enable two-factor authentication (2FA).With 2FA, a secondary form of verification is required to prove your identity, in addition to your username and password. You will get a text with a six digit number to your phone, and you must enter this number to access your account. However, on X (Twitter) you can only get 2FA if you pay an additional $8 monthly for the Premium service.
Contacting some Tech Companies’ Support
Kim also included links for those who would rather use a contact form or chat service.
- Amazon: 888-280-4331; Go here for Amazon support.
- Microsoft: 800-642-7676; Go here for Microsoft support.
- Apple: 800-275-2273; Go here for Apple support.
- Google: 650-253-0000; Go here for Google support.
- Meta (Facebook and Instagram): 650-543-4800 (Heads up: It’s hard to get someone to answer); Go here for Facebook support. Go here for Instagram support.
- Tesla: 888-518-3752; Go here for Tesla support.
- Roku: 816-272-8106; Go here for Roku support.
- Samsung: 800-726-7864; Go here for Samsung support.
- PayPal: 888-221-1161; Go here for PayPal support.
- Zoom: 888-799-9666; Go here for Zoom support.
FACEBOOK DATA BREACH
In the latest (as of this writing) over 200,000 Facebook Marketplace user records were leaked onto a hacking forum. The details leaked included email addresses, mobile phone numbers and other personal data of the Facebook Marketplace users.
As the tale goes, a hacker breached a contractor who manages servers for Facebook and stole a partial database of 200K users. The leaked file included names, phone numbers, email addresses, Facebook IDs and Facebook profile information.
These email addresses could then be used in email phishing attacks and the phone numbers in mobile phishing scams.
This is not the first time data had been stolen from Facebook/Meta, and likely will not be the last.
So, to protect yourself, change your password on Facebook to something difficult.
This warning from the Kim Komando newsletter.
CHROME UPDATE LINKS
Don’t click on Chrome update links. McAfee, a well known antivirus software company, says that clicking an update link spreads the new MoqHao malware. Unlike other viruses, MoqHao infects your computer immediately. To get a real Chrome update, simply restart your browser.
This warning from the Kim Komando newsletter.
Stealthy Backdoor Mac Malware That Can Wipe Out Your Files
MacOS is generally perceived to be more effective at keeping malware out compared to PCs and other operating systems. However, that’s not the reality; MacOS is just as vulnerable to malware threats as any other operating system, and this misconception can lead you to not be as vigilant regarding malware threats.
As evidence, there’s a new one you need to be aware of called SpectralBlur, which is a sophisticated backdoor malware threat targeting Macs that’s capable of wiping out your files without you even knowing how and when it got there in the first place.
Read full article at Stealthy backdoor Mac malware that can wipe out your files – CyberGuy
From the Kurt the Cyber Guy newsletter.
Mother of All Breaches
Dubbed the “Mother of All Breaches,” the massive leak revealed 26 billion records — including popular sites like LinkedIn, Snapchat, Venmo, Adobe and X, formerly Twitter — in what experts are calling the biggest leak in history. Click the link below to read more.
Look Who Died
I have seen this link several times. Normally, one may be curious as it could (seem to) come from a friend, and one may think a celebrity they like has passed. No, it’s a link to where your ID and password could be stolen. Be safe and delete the email or text message or Facebook post.
Utility Scam Warning
AARP warns of a spike in utility scams this winter. Scammers threaten service shutoffs via call, text and email, hoping you’ll panic and hand over money or info.
Similarly, after a storm, never, never work with a “contractor” who happens to knock on your door to provide ANY services, such as roof repair. ONLY hire someone whom you have called yourself.
Apple “Stolen Device Protection” in iOS 17.3 Update
The now available iOS 17.3 update comes with a feature called Stolen Device Protection, which locks down your phone with your biometric verification. This means that it prevents a crook from accessing or changing certain settings on your phone without your Face ID or Touch ID. Click the link below to read more.
https://apple.news/ADkh0_ob-QgOdo3yIt_cAxQ
