Up next
Author

Fears over cyber security have been heightened in the wake of the worldwide takedown of ‘Amazon of crime‘ the Genesis Market.

The online selling site – which offered crooks victims’ IDs for as little as 50p (75c) – had not been heard of by most computer users until yesterday.

Alarming details released by the UK’s National Crime Agency have sparked concerns after millions of victims had their details up for sale.

They included online banking, Facebook, Amazon, PayPal and Netflix account information, as well as digital fingerprints with mobile device data.

But online security experts say there are a number of ways people can stay safe – as well as spot the signs they might be compromised.

Vonny Gamot, Head of EMEA, at online protection company McAfee, told MailOnline: ‘Regularly monitor your accounts for any unfamiliar or unauthorised activity, such as attempted logins, messages sent from your account or transactions you didn’t make. 

Vonny Gamot, Head of EMEA, at online protection company McAfee, has given cyber advice

Vonny Gamot, Head of EMEA, at online protection company McAfee, has given cyber advice

Visitors to the Genesis marketplace today are greeted by this splash page after the takedown

Visitors to the Genesis marketplace today are greeted by this splash page after the takedown

‘If there is something suspicious, report it immediately. 

‘And keep an eye out for phishing attacks. This could be an email or text message that directs you to a fake site designed to steal your personal information – either by tricking you into providing it or by stealing it without your knowledge.

‘It’s always wise to keep a sceptical eye open for unsolicited messages that ask you for information in some form or other, often in ways that urge or pressure you into acting.’

Have you been hacked by Genesis? 

– Visit Check Your Hack and input your email address to find out if your data has been compromised.

– Signs of infection can include a slow running device that is rebooting by itself or pop-up boxes from programs you don’t recognise that may ask you to do unexpected things.

See also  Voters reveal whether they TRUST Biden or Trump more to handle America's biggest issues as president

– If you suspect your PC, tablet or phone has been infected with a virus or malware, follow the NCSC guidance to remove the infection and restore your device.

– Check your online accounts to see if there has been any unauthorised activity, such as attempted log-ins from strange locations, messages sent from your account or money transfers you don’t recognise.

– Ensure your computer and mobile devices always have the latest security updates installed where possible.

– Apply updates as soon as they are available, do not ignore these prompts. Turn on ‘automatic updates’ in your device’s settings, if available.

– Use three random words to create a strong password for each of your online accounts that’s different to all your other passwords, to prevent criminals accessing your personal information.

– Always use 2-step verification (2SV) where possible to protect your most important online accounts. It helps to keep criminals out of your online accounts, even if they know your passwords.

– Use your browser’s password manager to safely store passwords. Password managers are easy to use, hard to crack and will save you from having to memorise your passwords. Web browsers will offer you the opportunity to save your password when you log into an account.

– If your data has been comprised or accessed by criminals on Genesis or if you have fallen victim to fraud or cyber crime more generally, report it any time to Action Fraud. 

– In Scotland, report it to Police Scotland by calling 101. If you are a victim of fraud, you should also report it to your bank.

– If a law enforcement officer contacts you in relation to a suspected fraud, you can verify their identity by calling the police on 101 or the NCA Control Centre on 0370 496 7622.

– If you’ve received a suspicious email, forward it to [email protected] to help stop criminal activity.

See also  Mum's screams send masked, armed men fleeing amid Brisbane crime spree

The Genesis Market worked through a group of attackers that created a program which infected millions of users over the world to harvest their data.

Those who wanted to use Genesis could only join by invite from an already established member. 

The referrals were offered for sale on some places on the net for around £25.

The marketplace could be found using normal internet search engines, as well as on the dark web, and users were offered step-by-step guides on how to buy stolen details as well as how to use them for fraud.

The site contained easy-to-follow instructions telling offenders how to masquerade as their victim, getting around banking systems that require biometric data.

It even advised how to buy bitcoin to avoid law enforcement tracing transactions.

Data on sale included account log-ins, passwords, cookies, search history and autofill form data enabling fraudsters to build up a detailed picture about their prey.

Offenders were also able to infiltrate victims’ computers to install secret malware which notified them in real-time if their target changed their passwords.

Armed with the information, fraudsters were able to empty bank accounts, indulge in mass spending sprees or steal valuable data to blackmail victims into handing over even more cash through ransomware.

Vonny added: ‘If you think you may be a victim or are generally concerned about protecting your online privacy and identity, then there are some simple steps you can take to protect yourself.

‘Strong and unique passwords are a must, which means never reusing a password for multiple accounts, apps and platforms.

‘Using a password manager will help you keep on top of it all, while also storing your passwords securely.

‘While a strong and unique password is a good first line of defence, enabling two-factor authentication across your accounts helps provide an extra layer of protection for your privacy and identity.

‘Regularly monitor your accounts for any unfamiliar or unauthorised activity, such as attempted logins, messages sent from your account or transactions you didn’t make.

See also  The frantic texts Hope Hicks sent to Michael Cohen when details of the McDougal deal were published just FOUR DAYS before the 2016 election ... with hints about Stormy Daniels

If there is something suspicious, report it immediately.

‘And keep an eye out for phishing attacks. This could be an email or text message that directs you to a fake site designed to steal your personal information – either by tricking you into providing it or by stealing it without your knowledge.

It’s always wise to keep a sceptical eye open for unsolicited messages that ask you for information in some form or other, often in ways that urge or pressure you into acting.’

Members of the public can click here to find out if their credentials featured on Genesis.

HOW TO CHECK IF YOUR EMAIL ADDRESS IS COMPROMISED

Have I Been Pwned?

Cybersecurity expert and Microsoft regional director Tory Hunt runs ‘Have I Been Pwned’.

The website lets you check whether your email has been compromised as part of any of the data breaches that have happened. 

If your email address pops up you should change your password.

Pwned Passwords

To check if your password may have been exposed in a previous data breach, go to the site’s homepage and enter your email address.

The search tool will check it against the details of historical data breaches that made this information publicly visible. 

If your password does pop up, you’re likely at a greater risk of being exposed to hack attacks, fraud and other cybercrimes.

Mr Hunt built the site to help people check whether or not the password they’d like to use was on a list of known breached passwords. 

The site does not store your password next to any personally identifiable data and every password is encrypted

Other Safety Tips

Hunt provides three easy-to-follow steps for better online security. First, he recommends using a password manager, such as 1Password, to create and save unique passwords for each service you use. 

Next, enable two-factor authentication. Lastly, keep abreast of any breaches


DailyMail

Leave a Reply

Your email address will not be published. Required fields are marked *

Sign Up for Our Newsletters

Get notified of the best deals on our WordPress themes.

You May Also Like

Judge rejects Trump mistrial request in E. Jean Carroll case

Donald Trump appears at a rally. E. Jean Carroll enters federal court…

From snoring to clapping and getting drunk…Inside the theatre as Sheridan Smith gets set for the curtain call of Opening Night after producers announced show would end its West End run early

Sheridan Smith’s critically slammed, fourth-wall breaking play Opening Night has been canned…

Chase shuts NYC ATMs at 5pm due to crime and vagrancy

Chase has announced banks in New York City will close ATMs by…

Kenneth Lee Simpson killed detective Mason Griffith

Kenneth Lee Simpson appears in a mugshot after allegedly killing an officer…