CONTACT US
CONTACT US

8 Steps to Take When You Get a Notice Your Data was Breached

Haviland Broadband Blog Posts | 0 comments

what to do data breach

You get an email or letter from a business saying someone breached your data. It happens all too often today, and when it does, you feel powerless.

Data breaches happen at banks, online sites like Facebook, and e-commerce stores. Not only that, but governments are also victims. This leaves things like your address, SSN, and credit card details exposed to thieves.

A business getting hacked is something you have little control over, but you can take important steps afterward. We’ve outlined the most important things to do below. These steps can help you mitigate the financial losses.

Verify the Notice

The first thing you should do is contact the business to verify that the notice is real. Cybercriminals love to scare their victims into giving up personal information by sending out false messages. Don’t use any phone number or links you received in the notice. Instead, go to the business’s website and contact them using a phone number on their site.

Change Your Passwords

Once you’ve verified that a compromise has happened, the next thing you should do is change your passwords. Change the password for the service that sent you the breach notification first, then, change it for any logins using the same password.

This is one of the reasons it’s a best practice to use unique logins for every site. Many people get in the habit of using the same password in several places. This leaves more than the single breached login at risk. Use a password manager to help you create strong passwords. You only need to remember one to access all the others.

Enable Multifactor Authentication (MFA)

Multifactor authentication can keep accounts secure, even if a hacker stole the password. Enable it for the breached service. Then, ensure you have MFA activated for all other logins, where possible. MFA is also called two-factor authentication or two-step verification.

Common forms of MFA are:

  • Text message
  • Authentication app
  • Security key
  • Email verification

Check Your Bank Accounts

If payment card details were breached, check bank accounts. You’ll want to watch these for several weeks for fraudulent charges. Report the breach to your bank to have them issue you a new card if needed.

Notifying your bank of the 3rd party data breach can also help keep you from being held responsible for fraudulent charges. It’s good to get out ahead of it. Your bank can then help you with appropriate steps to avoid fraud.

Freeze Your Credit

Online criminals will often sell breached personal details. These details can enable someone to take out credit in your name. Contact the three credit agencies as they each have ways to freeze your credit to protect you. This can be done right on their websites.

The three credit agencies are:

  • Equifax
  • Experion
  • TransUnion

Carefully Review the Breach Notification

It’s important to understand exactly how the data breach may impact you. Review the notice you received. Additionally, look for updates on the company website.

These are the things you should be looking for:

  • The type of data exposed (passwords, card numbers, etc.)
  • What reparations the company is making (e.g., credit monitoring)
  • Any instructions given to secure your account

Regularly check the company’s website. Often, they don’t immediately know how far-reaching the breach is. You may check back later and find out other types of sensitive data were exposed.

Get Good Cybersecurity Protections

Make sure you protect your device and network. There are some simple tools you can use to beef up personal device security. These include:

  • A good antivirus/anti-malware program
  • DNS filtering to block malicious sites
  • Email spam filtering for phishing

Also, don’t use public Wi-Fi to conduct personal transactions. Instead, use a hotspot on your smartphone.            

Be on the Lookout for Phishing Scams

Emails are often exposed in data breaches. This means you may receive an uptick in phishing emails. Phishing is very convincing since criminals have AI at their disposal. Phishing emails often are hard to spot from the real thing.

Stay ultra-aware of any unexpected emails. Follow these best practices to avoid becoming a phishing victim:

  • Hover over links to see them
  • Go to websites directly. Don’t click email or SMS links
  • Beware of unknown senders
  • Watch for phishing on social media and text messages
  • When in doubt, double-check through an official source

Make Sure to Update Software & Systems

Hackers often exploit unpatched vulnerabilities. How do you get unpatched vulnerabilities? Most times it’s from failing to keep software updated.

Make sure to update your device’s operating system. Update all apps or software on your devices. Update firmware for routers and printers. Update firmware for smart devices.

There are so many updates we need to do with our electronics, automating your updates is a good way to stay protected.

Managed Security Services You Can Count On

Managed services can keep you protected. Need help improving device security? We’ll be happy to discuss your options.

Contact us today to schedule a chat about device security.

Article used with permission from The Technology Press.