In wake of Columbus ransomware attack, cyber expert offers tips to protect yourself
As the City of Columbus continues to grapple with a ransomware attack that reportedly took place July 18, concerns about the threat of data breaches to large organizations and even individuals have also surfaced.
The Dispatch reported Wednesday that the cybercriminals continued to blackmail the city of Columbus by threatening to publicly release a huge trove of stolen information unless someone purchased it on the dark web for roughly $1.7 million by Wednesday morning.
City departments have been impacted by this breach which have not only hindered the ability to make ticket and permit payments, but also personal information leaks caused the city to offer credit monitoring services for affected employees.
Now a major concern for Columbus residents, Benjamin Dalton, who has been the director of information security at Columbus State Community College for seven years, breaks down the threat of data breaches and what to do if your data is compromised.
What is a data breach?
There are many ways sensitive data can be compromised, yet Dalton says recently ransomware and phishing are the most common.
Large organizations and institutions are especially prone to data breach attempts because they often host large amounts of data and personal information. Stolen information can easily make its way to the dark web to be sold and extorted.
"Ultimately they sell your data for a price so people can use on the dark web to find additional targets," Dalton said. "This would be another mechanism for those malicious actors to sell information to other folks that are looking for it which makes it easy for them to not have to hack in to steal the data themselves."
What is ransomware?
Ransomware occurs when a malicious actor compromises the security of an organization. They obtain access into computer systems through phishing emails or other means to retrieve data and then prevent the data from being read by the organization through encryption or by making copies of the data.
"They're holding your data for ransom in that scenario, so it actually prevents the IT teams from unlocking the data," Dalton said.
Although some corporations have necessary backups to recover the data, Dalton said some organizations have to weigh the pros and cons of paying the ransom to get their data back.
How to avoid ransomware data breaches:
Use a long, strong password (avoid commonly used words).
Include a minimum of 12 characters in passwords.
Use multi-factor authentication.
Keep software up to date.
What is phishing?
Phishing is a scam to trick you into divulging personal information or installing malicious applications on your computer by posing as an authentic entity or member of an organization. This is typically done through text, emails or phone calls.
"Phishing has become so sophisticated now these days they've become so customized and tailored," Dalton said. "Sometimes it's hard just to be aware of what type of messages are coming in."
How to avoid phishing data breaches:
Scrutinze unexpected emails or messages.
Don't respond to a suspicious email.
Never click or download software.
Authenticate the sender of an email.
Do not overshare personal information (bank account, social security or date of birth).
How to avoid personal credit theft:
Regularly monitor accounts by submitting requests for a free credit report.
Review credit reports for unusual activity.
If unusual activity is suspected, follow up with a credit reporting agency.
What to do if data is compromised
Just as the city of Columbus has learned in the past few weeks, the possibility of a data breach is extremely likely as cybercriminals and ransomware groups like Rhysida become more sophisticated in data theft tactics.
In the event a data breach occurs, this may lead to identity theft for individuals. Dalton said it's important to take appropriate action as soon as possible.
"We do ask people to stay calm and really secure that verification process," Dalton said.
Here are some other suggestions he gave if you become a victim of identity theft.
Verify the breach is authentic (beware of fake breach notifications).
Contact the organization that has notified you of a breach.
Review the materials you have been provided about the breach.
Change password immediately.
Report the breach to local authorities and the Federal Trade Commission.
For credit theft, place a fraud alert through Experian, Equifax or TransUnion.
This article originally appeared on The Columbus Dispatch: What is a data breach and how do I avoid it? Cybersecurity expert explains