Category: Scams

The Growth of Irish eCommerce & Related Security Risks

In the last decade, brick-and-mortar stores have slowly started to decline in popularity. The truth is, many shoppers prefer the simplicity and convenience of online shopping. Additionally, the pandemic has only increased the popularity of eCommerce and sped up the decline of physical stores.

Since brick-and-mortar stores were on their way out, digital storefronts have started poaching stores’ clientele. However, eCommerce comes with its own set of issues, including cybersecurity.

According to a survey published by Irish telecommunications company Magnet Networks, 20% of respondents claimed to be unaware of significant cybersecurity issues within the industry. Moreover, the same report states that 43% of cyber attacks against Irish businesses can be attributed to unawareness. 

If you couple this with Hiscox Insurance’s findings that 41% of Irish firms studied experienced a cyberattack over a six-month period, it’s easy to see why cybersecurity is such a big concern in Ireland.

The sudden surge in Irish eCommerce demands these businesses to tighten up their cybersecurity systems. However, the first step should be understanding the most significant risks Irish online businesses may face. 

The Cyber Threats Facing Irish Businesses

1. Ransomware Attacks

In 2017 the WannaCry ransomware spread like a wildfire. By the end of the year, nearly 30,000 organizations were affected and many of them were organizations like hospitals, universities, businesses, and banks.

WannaCry caused millions of dollars of losses across the globe. And while many citizens and organizations were thankful the WannaCry scourge was put to an end later in the year, cybercriminals rejoiced because they saw an opening.

Ransomware locks the infected device and encrypts data stored on the device. Once the user turns the device on, they’re greeted with a “ransom note”. This “note” informs the user that if they want to see their data unencrypted they have to pay a certain sum of money, which is often in cryptocurrency.

However, paying the sum rarely gives the user access back. Despite that, people keep sensitive, valuable information on their devices, so it’s only natural they would want to pay. But what about the impact on businesses? Not only do many companies pay the ransom, but they also have to replace compromised devices. On top of that, businesses often have to pay a security firm that’ll make sure no confidential data was stolen or compromised. 

2. State-Sponsored Attacks

The introduction of the Internet gave countries the ability to communicate with each other more efficiently, as well as the ability to wage cyberwars and launch cyberattacks.

These attacks are commonly known as “state-sponsored attacks”. Countries launch state-sponsored attacks for a few reasons, including:

  • Hunting for information they can exploit,
  • Exploiting businesses and people,
  • Exploiting vulnerabilities found in government systems.

Ireland has a long history of state-sponsored attacks, as well as the whole EU. For instance, in 2017, Irish electricity provider EirGrid became a target of a state-sponsored attack.

State-sponsored attacks are unpredictable and can cause severe damage if we do not have proper precautionary measures in place. 

3. Phishing Scams

While some cyberattacks use complex software and have the backing of governments, others rely on social engineering and old-fashioned manipulation. One of the most commonly known social engineering attacks is phishing.

Phishing scams include manipulating the victim into giving out personal and financial information, which can be done in several ways, such as:

  • Promising a reward (a gift card, for example),
  • Creating a sense of urgency (fake Microsoft callers calling about a virus), and
  • Impersonating a family member or close friend.

 

Unfortunately, millions of people around the world fall for phishing scams each year. It’s easy to spot obvious phishing scams like the Nigerian prince scam, but nowadays cybercriminals know more sophisticated ways of manipulating users, and many phishing scams look and sound legitimate.

What Can Organisations and Irish Citizens Do?

While many cyber attacks can have a devastating effect on your business, there are some ways to prevent them from happening in the first place. However, a solid cybersecurity strategy requires time and effort. Thus, start learning and implementing new strategies to improve your chances against cybercriminals. 

1. Use a VPN

Cybercriminals lurk on every corner of the Internet, waiting for an easy target. Unfortunately, in many cases, you don’t have to do much to become a victim. However, some practices may increase your chances. For example, many users transmit unencrypted data, whether they’re on a public network or while running their business, which can be extremely dangerous.

These days, cybercriminals can intercept and read unencrypted data without much effort. To make sure your data isn’t exposed, consider using a VPN for security.

For instance, ExpressVPN’s app actively encrypts the data your device sends out, meaning that cybercriminals will have a much harder time cracking it. You can also apply a network-wide VPN for your home or business to protect all the devices on the network in one swing. 

2. Create Strong, Unique Passwords

Using the same password across multiple accounts will make your accounts more vulnerable to hacks. However, surveys show that most people still prefer using weak, easy-to-guess passwords.

One way to protect your accounts is by using a robust and unique password for each account. An even better option is using a password manager for your credentials.

3. Frequently Update Software

Software updates often contain various security fixes. Thus, to make sure your devices aren’t in danger, regularly check for available updates and update the software as frequently as possible.

Educate Yourself and Your Employees on Current Cybersecurity Risks

According to the aforementioned Magnet Networks survey, many Irish business owners lack awareness of current cybersecurity risks and dangers that could affect their businesses.

This lack of awareness means they often can’t identify the threat and are unprepared for an actual attack. This puts them at an immediate disadvantage, and it can severely endanger their business.

Thus, the first step should be educating your employees and yourself on the basic cybersecurity etiquette, the latest cybersecurity trends, and the dangers facing your businesses.

1. Subscribe to an Account Monitoring Service

When a data breach does happen, it’s essential to detect it as soon as possible. The longer the breach goes unnoticed, the more time the hacker has to tamper with the stolen data, and eventually sell it, or use it for nefarious purposes.

This is where account monitoring services can come in handy. Account monitoring services keep an eye on your accounts and inform you about potential security breaches or any other suspicious activity.

What’s more, you can choose between account monitoring services for individuals and businesses according to your needs.

2. Limit Access to Your Devices

There are no security software and cybersecurity education courses that can protect you if you leave your devices unsupervised. A skilled hacker needs only a few minutes to wreak havoc on an unattended device.

Thus, limiting access to your devices can significantly impact your overall security.

3. Set Roles for Each Employee

Letting your employees access all data at any time can result in security breaches. Fortunately, IT can set roles for everyone. This way, you can divide employees into groups and give them specific permissions based on their roles.

4. Secure Your Network

Without accessing the network, cybercriminals have fewer opportunities to harm your accounts. This is why it’s crucial to tighten up your network security.

For example, actions such as whitelisting trusted devices, setting a strong security key, and hiding your network can increase the overall security of your network.

Bank of Ireland SMS scam you need to be careful of. Scams #SMS #BankOfIreland

Updated – Again this scam is going on we first brought this to the banks attention back in April 2020 before any of the media did, Some media think this is new regarding the identifier when in fact it is almost two years old.

We are all aware of the scams going around with the banks of late and some we have reported on before but this one took  interest today when it came through on my phone via SMS. Yes there is SMS going around too and some without or without an identifier on the SMS ie a sender or reference on top and if you are a BOI customer you will understand the problem here.

As seen in the tweet above if you are a customer of BOI you may already have an SMS on your device in a thread such as I do from BOI which is fine and legit but the text now continues in the same thread giving it a more genuine look and as if it came from your bank and if you click on the link in the SMS it lands you on a page identical to BOI which is then where the scammers will catch you out and you have handed over all your details.

BOI perhaps did not understand the question here as they include another party in the conversation as it was me who got the text but contacted me via DM and then got the message and are now looking into the matter, best thing to do is for those whom maybe a new BOI customer is delete the current threads to start with and also check the identifier on top too and do not open any link sent via SMS no matter what is says or how good it may appear.

British Essentials sms scam to watch out for. #Scams #BritishEssentials

We have a new company to watch out for which is British Essentials on the scam front and we have not seen the end of these scams by any means and we will doing a series about this and how to check out if your sms or email is real or fake as due to the pandemic people are shopping online more than ever and this is how these criminals try to catch you out, We will explain in more detail in a new post later on how to check if you have a parcel or if it is a scam and show you how to do so without getting caught.

This company is based in the UK yet it has an Irish Mobile in the identifier up top of message and after that it is just bad news for the rest, If you get this text message delete it immediately and do not click on any link in the message. I have reached out to the company… There is several numbers attached to this scam but the main thing that stands out is the company.

Very elaborate PayPal scam to be vigilant about. #Paypal #Scams

Over the last week I have been hammered with emails pertaining to PayPal and it has gotten way out of hand but this is a good scam with a good replica of PayPal itself throughout. I do have a PayPal account under my personal email account which is not in the public domain but nothing related to the email address for the site. Yes the tech email is out there and yes we get hammered with scams all the time offering the usual 5 billion dollars from Besnons desk and so on and much more but this is pretty much the norm these days for such people out there in the media with your public email available to all.

It has got that bad no I have a pain in my backside with the amount of emails I have got in the last week requesting payments and limiting my account and I have tried to block such and they keep coming and each time they have a different billing number I am now up to bill 28 plus I have had several emails claiming my account is restricted.

I have got in touch with PayPal over this and send them a full dialogue of what has been happening over the last week and awaited their response but they of course hit back with the standard affair of what you need to do and how to spot fakes which is fine but this time around this is more elaborate with secure encrypted pages showing and this is where people will get caught out and think all is fine and dandy when it is far from it.

I have left all image samples here for all to see what you need to look out for so you can see what we are dealing with and to keep an eye out for I am waiting for PayPal to come back to me with a report as I had a discussion with them today via Twitter. This might not be news to some folk out there but here is what you can look out for to get some idea of what we are dealing with.

PayPal have responded with the following and have also got back to me via email on this. You can also report and check what to watch out for HERE 

Hey! I completely understand your concern. Please forward the email’s to spoof@paypal.com. We continuously work to disable these emails and websites and review all submissions sent to spoof@paypal.com. We work to shut down fake websites, and our fraud teams work to identify and prevent fraud before it occurs. We also work with law enforcement around the world to stop online criminals.

Two text scams citing @CentraIRL and @Google to watch out for. #Centra #Scams #Google

A bit late to post this evening but important to watch out for and pass it on. These two SMS scams came in over the last two days on one of my phones and are important to note and coming up to the festive season we will probably see more of them,all the info you need to look out for is below.

The first one is a text labelled CENTRA but no other information is available on it but it will read they have tried to reach you to claim a prize and the prize is a Samsung Galaxy S10 of course this not true and Centra is not running such a competition. See below for the details.

My phone message
My phone message
Centra Irl Tweet

The second scam just has SMS on the title and it is the usual photo message,this leads you onto Google to win an iPhone of all things which made me laugh out loud Google giving away an iPhone of all things. Check the image below for a good laugh. Centra advise to report to comreg. Good luck with that.

Below we go onto the Google SMS. Centra have been pro-active about the scam but nothing from Google yet..

Source,my phone
Source – My Phone
Source – My phone

Enjoy the weekend folks.. Pass it on. We are now working on our Christmas Review season and watch out for cool tech products over the next few weeks to cater for all pockets.. We just don’t talk about tech, we review it both in video and images and we have drones, earphones, headphones, security cameras, projectors, escooters, accessories, dashcams and lots more including kickstarter tech.

Primark gift voucher scam to watch out for. #Scam #GiftCards #Primark @Primark

Another day another voucher scam this time it is Primark. Yes there is a tasty £200 voucher given we are in Euros the voucher may look convincing enough for some but the url is a redirect to COSMO CASINO which will just nick your money give you a welcome bonus and you know what happens next, As always just avoid,block and report, The more we fight the likes of these the more we help others.. Last December there was a similar scam that hit with Pennys which was featured in many of the tabloids here..

We have contacted Primark about this.. See below the response…..

The note attached to the email seems all grand and dany but it is utter tripe. You will also notice the spelling error which again is common with such rubbish attempts to fool people.. Congratulations! You stand a chance to win this £200 gift card. Do you want to own more summer clothing this year? You canl Participate now and maybe you will be one of the many winners!

Primark response from Twitter