The IT Nerd

The first six months of 2019 have been enough for data breaches to affect at least a few billion people. The leaked data includes influencers’ phone numbers, security audit logs, student records, banking data, medical records, and much more.

“Assume that if you are online, your data has already been leaked. Criminals can use that data to lure you into a sophisticated phishing attack or influence your votes with personalized ads,” says Daniel Markuson, a digital privacy expert at NordVPN.

According to NordVPN’s digital privacy expert, the US remains the most popular target country for data breaches and hacks, but they’ve been happening all over the world.

Here are the five largest data breaches and leaks of the first six months of the year 2019:

1. Collections #1-5 (approx. 3 billion accounts)

Collections #1-5 was a megaleak containing around 3 billion users’ records. Cybersecurity researcher Troy Hunt discovered links to all these databases being shared on a hacking forum. This is the biggest selection of compromised data ever, collected over time from several other breaches.

• Collection #1 appeared on the dark web in January. It is said to contain addresses and passwords from over 2000 previous data breaches, which includes the emails and passwords of 770 million people. It appeared on the cloud service MEGA and was available for download via torrent magnet links. Collection #1 contained over 12,000 files and “weighs” more than 87 gigabytes.
• A few weeks later, a megaleak titled Collections #2-5 containing approximately 25 billion unique records and roughly 2.2 billion unique usernames and passwords became available on the internet. It was distributed through hacker forums and torrent sites. Collections #2-5 amount to 845 gigabytes of stolen data. As with Collection #1, most of the stolen data come from earlier thefts, like the breaches of Yahoo, LinkedIn, and Dropbox. Same as with the first batch of data, most of it came from years-old leaks.

2. Cloud service leak (2.3 billion files)

At the end of May, researchers from the Photon Research Team at Digital Shadows discovered that 2.3 billion files were accessible online due to configuration errors. The data was public across data-sharing and cloud services, online storage services, and companies’ servers. These files included medical scans, credit card details, payroll files, intellectual property patents, and at least 11 million photographs, many of which were considered private images. They went public on a Japanese photo-sharing platform called Theta360. Fortunately, the company reacted quickly and sealed the leak over the next 24 hours.

3. Facebook, WhatsApp, and Instagram (2.1 billion users)

This list would not be complete without Facebook and its companies. They are responsible for a whopping 2.1 billion users’ data getting breached or leaked.

• In April, a cybersecurity firm called UpGuard found and reported that two third-party Facebook app developers – Mexico-based Cultura Colectiva and an app called At The Pool – stored a total of about 540 million Facebook user data entries on unsecured Amazon Web Services (AWS) servers. This included “comments, likes, reactions, account names, FB IDs, and more” from millions of Facebook users.
• In May, Facebook-owned WhatsApp was breached. Hackers found and exploited a security flaw that left its users vulnerable to spyware. The exact number of victims is unknown, but the app has 1.5 billion users, all of which could have been affected. An Israeli government surveillance agency called the NSO Group designed the spyware. It could turn on a device’s microphone and camera, gain access to emails and messages, and collect location data.
• In the second half of May, the contact details of nearly 50 million Instagram users became accessible on a massive unsecured online database. The breached data contains the personal information, such as emails and phone numbers, of high-profile influencers, celebrities, and brand accounts. The database itself was on an Amazon server and was not password-protected. It was traced to a Mumbai-based marketing company called Chtrbox.

4. Internet of Things: Orvibo (2 billion records)

The most recent breach on the list happened at the beginning of July. Noam Rotem and Ran Locar, researchers from vpnMentor, discovered that a user database belonging to a Chinese company called Orvibo, was left openly accessible online. Orbivo runs an Internet of Things management platform. Its database contained over 2 billion logs, including, among other things, users’ passwords, email addresses, geolocation details, and, most disturbingly, reset codes. They could be used to reset passwords and email addresses – leaving the users locked out of their accounts forever.

5. Breaches & collections by Gnosticplayers (over 1 billion accounts)

A hacker called Gnosticplayers has been putting batches of hacked data on a darknet website called Dream Market since mid-February. He stole 1.071 billion credentials from 45 companies by the end of May, a goal he was aiming for.

The hacker requested varying sums of bitcoin in exchange for the stolen info and promoted the data in the mass media. He claimed that his two main goals are money and the “downfall of American pigs.”.

Gnosticplayers released the stolen information in six rounds, which varied in size and price. It contained data from various apps and companies and included users’ full names, email addresses, passwords, location data, social media pages, etc. Some of the affected companies paid fees so that their information would not be released.

One of the largest Australian tech companies, Canva, was affected the most. The company did spot the hacker and managed to close their database server, but not before he stole 139 million users’ data – login information, real names, addresses, etc. 61 million of the passwords were hashed with the bcrypt algorithm, one of the most secure algorithms today. The remaining 78 million accounts used Google tokens, which let users sign up for the service without a password.

Why did he do it? According to the hacker himself, sometimes he put the data for sale just because the companies didn’t encrypt their users’ passwords. “I just felt upset at this particular moment, because seeing this lack of security in 2019 is making me angry,” the hacker told ZDNet.

Dishonorable mention: medical and financial institutions

It was a difficult half-year for medical and financial institutions as well. A lot of security incidents were relatively small, but the overall number raises concerns. Only few to mention:

• In June, nearly 12 million patients were exposed in a Quest Diagnostics data breach.
• The next day, LabCorp disclosed that the same hack also impacted 7.7 million of their customers.
• American Medical Collection Agency’s security breach was by far the worst. It exposed personal and financial information of over 20 million people.

Unfortunately, a lot of financial institutions also suffered from similar attacks. Just a few examples:

• In June, data on 2.7 million individuals and 173,000 businesses was stolen by an employee of Canada’s largest credit union, Desjardins. Names, social insurance numbers, age, addresses, emails, and phone numbers were compromised.
• Hackers infiltrated Chile’s ATM interbank network, Redbanc, after tricking an employee into downloading a malicious program.
• In February UK-based Metro Bank became the first major bank to suffer from a new type of cyber intrusion that intercepts text messages with two-factor authentication codes.

What it means to digital privacy

These breaches and leaks are more dangerous than they might seem at first. The frequent cyber-attacks could be numbing the public to the privacy risks they represent.

“Due to frequent cyber-attacks and data leaks, people are becoming less attuned to privacy risks,” explains NordVPN‘s digital privacy expert Daniel Markuson. “This may lead to a careless attitude towards their own personal safety, and that would mean more severe damage for all internet users.”

Billions of people were affected only this year. It’s evident that internet users can’t trust companies and even government agencies to keep their data safe. Therefore, they must take cybersecurity into their own hands.

A study from Ofcom about children’s media usage revealed that parents are getting more and more concerned about the internet. At the same time, younger kids are spending more time than ever on digital devices because of their accessibility.

In general, the older the children get, the more they use and interact with media devices and services. Increasingly, the group of 12-15s goes online for the longest time per week. They choose the most ‘over the top’ TV services like Netflix, Now TV, or Amazon Prime Video or a video-sharing website YouTube, and have a social media profile. Also, preschoolers of age 3-4 are spending more time on tablets.

“The number of younger kids using electronic devices connected to the internet is growing at a rapid pace. This means that more people could become victims of cyber attacks or face other threats, such as cyberbullying or offensive content. Thus, parents should become more aware of their children’s activities online and start educating them as early as possible,” says Daniel Markuson, a digital privacy expert at NordVPN.

Compared to the previous year, content created by vloggers was more popular than ever among kids aged 3-15. Such content was also seen as a source of inspiration for creativity. Many of the interviewees upload content both to YouTube and Musical.ly, and it often mimics other popular YouTubers. Also, the rising vloggers’ popularity may be responsible for the increasing pressure to spend money online. Although kids understand that their favorite YouTubers get paid for product endorsement, this doesn’t stop them from buying promoted things.

Considering parental worries, the greatest one is “companies collecting information about what their kid is doing online.” Through the year, three other issues raised more concern: the child damaging their reputation, the pressure on the child to spend money online, and the possibility of the child becoming radicalized online.

Despite rising concerns, parents are sometimes less likely to restrict their child’s activities. In contrast with 2017, in 2018, children aged 12-15 were less likely to say they had received information or advice from their parents or guardians. Some of the parents thought that their kids were using common-sense while interacting online. Others believed that safe internet usage was taught in schools already.

NordVPN recommends that parents spend more time talking to their children about the threats in the digital world. “Cybersecurity education should start at an early age when guardians are still authorities. Limiting certain online activities is often not the best choice. Instead, one should try to explain to their children how important digital reputation, fact-checking, online etiquette, and safety are and how online advertising works. Being open and supportive will gain the child’s trust. Most importantly, a parent or guardian should set the best example they can,” explains Daniel Markuson.

The study ‘Children and parents: Media use and attitudes report 2018’ was released in February 2019.

NordVPN is creating a new generation password manager NordPass. NordPass will have a full range of features to ensure that passwords are as secure as possible. Its easy-to-use interface makes staying secure effortless.

NordPass will remember and autosave all passwords, autofill online forms, and allow to save private notes. Additionally, the new tool will generate strong passwords on the spot. NordPass will support major operating systems, offering browser extensions as well as native mobile and desktop apps.

NordPass is created using the latest security practices and industry standards. It uses powerful Advanced Encryption Standard (AES-256-GCM) encryption with Argon2 for key derivation, which is virtually unbreakable. Additionally, the new tool will have zero-knowledge encryption process to ensure ultimate security.

At the moment, NordPass is going through internal stress-tests. It is expected that the first beta version will be released this autumn. Signup for early access is now available on NordPass’s official website: nordpass.com.

NordVPN is a trusted online privacy and security solution, used by over 12 million internet users worldwide. It offers military-grade encryption with advanced privacy solutions and is recognized by the most influential tech sites and IT security specialists.

A few weeks ago, NordVPN introduced another cybersecurity tool – NordLocker. NordLocker will secure files stored on a user’s computer or in a cloud with end-to-end encryption. It is expected, that first beta version of this product will be released this July.

Source: NordVPN

Headlines about massive data breaches affecting millions of users have never been so frequent as now. In March, a security breach involving an email marketing company may have exposed the private data of 800 million people. This makes it one of the biggest data breaches so far, potentially affecting about 1 out of every 9 people. But where do all these huge datasets go after the leak, and is it really possible to save your data from a breach?

“Many people still believe that hackers are not interested in them,” says Daniel Markuson, a digital privacy expert at NordVPN. “People often imagine cybercriminals like fishermen, patiently waiting for the right fish to show up. In reality, they are more like fishing boats that use nets to catch as much as possible at once. Afterwards, they can benefit from the vast amounts of stolen data in many different ways.”

According to digital privacy expert, the data can be exploited to no end, from blackmail and corporate espionage to identity theft. The stolen data is usually sold on the dark web market that offers anonymity to hackers and buyers or open websites created for two to three days.

Daniel Markuson provides an overview of how your data can be stolen, where it usually goes after the breach, and how you can protect yourself online.

How data can be stolen

1. Downloading unverified content. By downloading unverified apps, games, movies, or browser extensions, you can infect your device with viruses or spyware. It is an easy way to lose your personal information, such as credit card numbers.
2. A leak from the entity that handles your data. By now, it is hard to imagine a day without confidential user data being hacked or leaked from one company or another. Breaches usually occur via the web and email, but can also happen through mobile data storage devices such as optical media, USB keys, and laptops.

3. Phishing emails or text messages. Phishing attempts most often begin with an email designed to obtain sensitive information. Such messages pretend to come from a legitimate source, such as banks, government bodies, or company leadership. They are constructed to elicit fear, curiosity, or a sense of urgency to click on a malicious link or download an infected attachment.
4. Unprotected portable devices. USB sticks, smartphones, flash memory cards, or other easy-to-lose gadgets may become an easy data source for anyone who finds one.

5. Skimming devices. Your financial data can be stolen using skimming devices. These devices can also memorize your PINs.

Why data is bought

1. Advertising and targeting. Stolen data on individuals’ habits, preferences, and personalities helps target ads more precisely.
2. Surveillance and spying. Hacked personal data can open the doors for stalking, tracking, monitoring, and harassment of the victim.
3. Identity theft and impersonation. Cybercriminals can commit financial crimes in your name. That may include anything from fake tax returns or illicit money transfers to insurance claims or loan applications.
4. Spam or phishing attacks. Your stolen data can help criminals launch phishing attacks and disrupt systems or access confidential information.
5. Blackmail, extortion, and hacktivism. It can be anything from ransomware attacks to cyber blackmail.

How to stay safe

“Cybersecurity starts with vigilance,” says Daniel Markuson, a digital privacy expert at NordVPN. “Two-factor authentication, secure storage of your passwords, and use of unique, strong, and complex passwords can protect your data from falling into the wrong hands.”

Regular updates of all your devices can prevent criminals from using weaknesses in the OS and apps. You should also avoid making online payments on public Wi-Fi or at least use a reputable VPN, such as NordVPN, to stay safe on unsecured networks.

However, according to Daniel Markuson, even the most advanced security tools will not protect you without your own input. They won’t help if you are not careful about the kinds of websites you visit or links you click. You should always be cautious about giving away your personal or financial details anywhere on the internet.

NordVPN is creating a new cybersecurity tool NordLocker. NordLocker will secure files stored on a user’s computer or in cloud with end-to-end encryption.

NordLocker will be a file encryption app for macOS and Windows. It will encrypt files stored on a computer or in cloud. NordLocker is created using the two most secure encryption algorithms known today – Advanced Encryption Standard (AES-256) and 4096-bit RSA. Additionally, the new tool will have NordVPN’s own zero-knowledge encryption process to ensure ultimate security. Users will be able not only to encrypt their files, but to share them securely by managing access permissions.

At the moment, NordLocker is going through internal stress-tests. It is expected that the first beta version will be released this summer. Signup for early access is now available on NordLocker’s official website: https://nordlocker.com/.

The increasing connectivity and digitalization of our everyday lives and business processes are creating a world of new possibilities. At the same time, that world is also becoming more vulnerable. That’s why cybersecurity nowadays is more important than ever. But Ariel Hochstadt, tech enthusiast and co-founder of VPNmentor.com, thinks that many people are becoming indifferent to data breaches, hacks, and leaks. All of that might lead to even more cybersecurity issues worldwide. Ariel Hochstadt’ interview with another tech enthusiast, NordVPNs digital privacy expert Daniel Markuson.

Daniel Markuson: Lately I’m overwhelmingly surprised by the so-called privacy paradox. Even though people express privacy concerns and fear identity theft, they still reveal their sensitive details online very easily. Why, in your opinion, is it so? Do you think people know enough about digital privacy, cybersecurity, and various online threats? And why is cybersecurity more important than ever?

Ariel Hochstadt: Today cybersecurity is more important than ever because we are more digital than ever. It starts with the essentials, like phones, tablets, computers, and extends all the way to technological milestones designed to improve our lives – smart homes, smart cities, you name it.

But do people know enough about online security and privacy? I’d say no. Honestly, you don’t even need to be an expert in the field to make your own reasonable conclusion – for example, how many friends or relatives do you have that still struggle with their phones or laptops? How many of them have asked you about this annoying pop-up or inappropriate notification that keeps appearing “out of nowhere”? That’s just the tip of the iceberg.

What people need to realize is that their smallest, seemingly benign actions are potentially tracked and analyzed every second – including basic stuff like mouse clicks or touchscreen taps. These days, cybersecurity companies can determine if you’ve been hacked just by detecting the slightest change in your mouse movement. We use this knowledge to help people stay safe, but that’s not the case with hackers, identity thieves, and other groups with bad intentions. In general, I believe people don’t pay enough attention to their digital lives – at least not until it’s too late.

Daniel Markuson: One of the craziest scams I’ve heard about is the so-called sextortion scam. Mainly because it bears a strong resemblance to an episode of the popular sci-fi series Black Mirror. Even though the blackmail threats are completely fake, so far this scam has been remarkably effective. Some sources say that criminals have netted more than $4 million in Bitcoin payments in just three months. This number may be even higher now. Do you remember other impressive or crazy scams, hacks, or other incidents that happened lately?

Ariel Hochstadt: That’s a pretty tough question! There’ve been a lot of them this year in particular, but the craziest one for me has to be the US Geological Survey employee that indirectly put a nasty piece of malware on government networks. They’d watch porn on a work computer – I think the number of adult websites visited was around 9,000. This is crazy enough by itself, but what really boggles my mind is the apparent lack of any filters or effective security measures to prevent this from happening. If crucial government infrastructure can be affected by poor judgment and malware, just imagine what threats average users are exposed to on a daily basis.

Daniel Markuson: We had an impressive first few months of 2019. First, the news about the Collection 1 containing the login information of 770 million people. Then a shady hacker put up for sale nearly 620 million online accounts stolen from 16 popular websites – later adding a second batch of 127 million records. Reports about various data breaches are coming in every day. What, in your opinion, can we expect in the future? Will 2019 get any better and safer?

Ariel Hochstadt: I’m afraid things will get worse in 2019, and in my opinion, there will be three major reasons as to why. One, there will be an increase in the number of devices and amount of sensitive information (passwords, banking credentials, etc.) online, while the common threats will remain the same – something as simple as a phishing email is still considered the most effective start to a ransomware attack, for example. Two, a whole new sector – crypto – is rapidly growing. The types of malware directed at crypto have increased more than twice this year, and unless the whole market suddenly drops dead, more headaches are certain in the near future. Three, there’s a real chance of “hack fatigue,” in other words, many people are likely to become indifferent to data breaches, hacks, and leaks. Both 2017 and 2018 had their share of cybercrime news and serious scandals, and the combination of constant headlines and blatant sensationalism works wonders for people’s tolerance to cyber threats – not in a good way, though.

With that said, the recent surge in debates and discussions is definitely a step in the right direction. I firmly believe that VPN sales will continue to grow – especially in the mobile sphere, where there’s a lot of untapped potential. I can also see other security measures, like anti-virus programs, making a strong comeback. In general, my opinion is that people are looking to improve their privacy and security online, but demand has shifted towards simple, efficient solutions along with the ability to trust a reputable provider.

Daniel Markuson: Every single day you Google things, visit blogs, buy online, pay bills, or browse Facebook. However, browsing the internet is turning into more of a minefield. This means security takes (or at least, should take) a high priority for us all. What are your personal methods to stay safe online every day?

Ariel Hochstadt: It’s pretty common stuff, honestly! *laughs* I always use a VPN, particularly when I’m using public/unsecured networks. I keep my passwords organized and encrypted with the help of a manager app, and I run an anti-malware scan at least once a week. Sometimes, the simple solutions work best, but if there’s one piece of advice I’d like readers to take to heart, it’s this – be consistent and responsible. Don’t click mindlessly on links in suspicious emails, and definitely try to avoid apps and websites that bombard you with annoying ads. I believe that if you don’t have a game plan for staying safe on the internet in 2019, you aren’t doing the global web community any favors. Lastly, it may sound a little rich coming from someone who’s invested in the cybersec field and does this for a living, but I advise reading up on new cyber threats and relevant cybersecurity news – staying up to date with the situation can certainly help to prepare you for new risks online.

NordVPN, one of the most advanced VPN services in the world, has partnered with London Drugs, a Canadian retail store chain. This marks a strategic decision to strengthen its market presence in Canada.

NordVPN is the first VPN service in Canada stocked at a traditional store. The retail boxes are also available on the London Drugs online store.

VPN stands for “virtual private network” – a service that encrypts one’s internet traffic and redirects it through a remote VPN server. It also replaces their IP address, keeping their location private. VPNs are used worldwide both for security and entertainment reasons. In a study of VPN usage around the world, GlobalWebIndex found that 25% of internet users had used a VPN in the past month and that 42% of them used a VPN daily.

NordVPN is a trusted online privacy and security solution, used by over 8 million internet users worldwide. It offers military-grade encryption with advanced privacy solutions and is recognized by the most influential tech sites and IT security specialists. NordVPN holds a significant market share in the United States, Australia, the United Kingdom, and many European countries.

London Drugs Ltd. is a Canadian retail store chain that is focused on local customers’ satisfaction. Its primary focus is on pharmaceuticals, computers and electronics, housewares, cosmetics, as well as a selection of grocery items. The chain has 81 stores in more than 35 major markets throughout British Columbia, Alberta, Saskatchewan and Manitoba including its online store www.LondonDrugs.com. The NordVPN package can be purchased in all of its stores and online: LondonDrugs.com.

Google’s Consumer Barometer shows that for many people in Canada, internet access is smartphone-centric. 28% use smartphones more often than computers or tablets to connect to the internet. Moreover, a Global Web Index report shows that as many as 16% of the world’s online population are mobile-only. Relying on smartphones to go online is particularly popular in countries with younger populations.

“Unfortunately, few people realize that mobile devices are even better at spying on them than computers. Millions of apps make it easy to use smartphones not only for social interaction but also for payment or storing sensitive data. That means users are vulnerable to security breaches as well as personal hacking attacks, especially on public Wi-Fi,” said Daniel Markuson, a digital privacy expert at NordVPN.

Here are a few tips from NordVPN’s expert Daniel Markuson that can help protect your privacy while using a mobile phone:

1. Recognize suspicious messages. Sometimes people tend to trust a text message more than an email. However, in reality, a “smishing” attack is as dangerous as an email phishing attack. It is usually a text message urging to click on a link. If you do, a malicious app may be installed on your smartphone, or you may be tricked into giving up your sensitive data. Make sure not to click any suspicious links in SMS or messenger apps and not to reply to messages that seem strange.
2. Be vigilant when downloading apps. There are apps designed particularly to collect your data or install malware. Make sure to download apps directly from official app stores, such as Apple’s App Store, Android’s Play Store, or Amazon’s Appstore. Pay attention to any signs suggesting that the app may be fake. For instance, excessive permissions often mean that the app is not legitimate.
3. Use a VPN app on your mobile phone. Many smartphone users tend to use public Wi-Fi hotspots. Unfortunately, these are especially unsafe. Whether you’re shopping online or sharing vacation photos on Wi-Fi, you should always use a VPN to keep your connection encrypted. For example, NordVPN’s apps for iOS and Android provide reliable encryption and user-friendly features.
4. Keep your software and apps updated. Hackers usually exploit security weaknesses in operating systems and apps. That’s why system and app updates usually contain security patches, which are released to protect your smartphone from threats. For your own peace of mind, make sure never to skip software updates.
5. Use your phone security settings. Install an anti-theft and recovery app that can locate your phone, lock it remotely, or even wipe your data if it gets stolen. Don’t forget to use passcodes to secure your phone. They should be more complicated than “1234” or the day of your birthday.

A study from Michigan State University revealed that impulsive behavior online, like obsessive use of social media, shopping, and downloading music, is tied to a higher risk of falling victim to cybercrime. People with such characteristics are especially vulnerable around special calendar events and holidays.

“It seems that your personality is critical to your vulnerability to cybercrime. Various scammers and hackers use time, fear, and money to lure people into their net,” says Daniel Markuson, a digital privacy expert at NordVPN. “If you notice an online deal that sounds too good to be true, don’t be impulsive and think twice. It might save you from losing your online identity, sensitive data, or money.”

According to the study, people who show “shortsightedness, negligence, physical versus verbal behavior and an inability to delay gratification” are at higher risk of hacking. This group is especially vulnerable when hackers disguise malware, viruses, or scams as a legitimate app, deal, or website.

The research has found that even though younger people, especially millennials, are perceived as more tech-savvy, some of them are more likely to fall victim to scammers. That is because they are more open about sharing personal information and tend to take more risks online.

“Last year, more than 1 billion people were affected by various data breaches. This year, a massive security breach has potentially exposed the private data of as many as 800 million people, making it one of the biggest leaks in the history,” says Daniel Markuson, a digital privacy expert at NordVPN. “All this data is an invaluable resource to hackers who can now tailor sophisticated phishing or social engineering scams. It will certainly be used this year, and those who show impulsive behavior online are likely to suffer”

NordVPN’s digital privacy expert points out that different software protecting users from malware is not enough. Their behavior is just as important. “You can have the best antivirus, the best VPN, the best firewall, but if you provide your credit card details to a scammer, none of these will help you,” explains Daniel Markuson.

The self-control of nearly 6,000 respondents was evaluated during the research. Researchers measured how people would react in different situations involving digital behavior.