Category Archives: Scam Alert

Data breaches can lead to credential stuffing

Data breaches can lead to credential stuffing

Data breaches aren’t going away—in fact, data indicates that they’re happening more often than ever before.

A 2018 report says that 75% of U.S. retailers have experienced a breach, with 50% experiencing the issue in the last year. Check out this graphic to see the world’s biggest data breaches.

Odds are good you will, or have been, impacted. But, once your data is out there, then what happens? Your email or other accounts can get hacked using a technique called “credential stuffing.”

What is it?

When breaches occur and credentials are leaked, hackers can generate massive lists of usernames (which are frequently email addresses) and passwords. With those lists, they can start crunching the data.

For example: you have a leaked email address/username and also a leaked passwords from LinkedIn and MyFitnessPal. Hackers use all three pieces of information to try and log into other types of accounts in case one of them uses the same credentials—but they’re doing this all through large-scale automated login requests.

No one is trying to crack or force their way into your accounts, but instead hackers are using massive automation to run through all of the different possible places your credentials could be used again. This is clearly a huge scam but it works, in part because many people use the same password in multiple places.

What can you do?

To help prevent a hacker from “stuffing” your credentials, here are things you can do:

  1. Don’t use the same password twice! More than 80% of us do it, but we really, really shouldn’t.
  2. Use a password safe/vault/manager. Using a password managers such as Password Safe or KeePass makes it easier to use randomly generated passwords for every site you use.
  3. Sign up for HaveIBeenPawned.com The site will notify you if your email address was involved in a known breach.
  4. Use uBlock:Origin with Chrome or FireFox. This browser extension can help block malicious links if you happen to click on one.
Malicious emails and attacks on the rise

Malicious emails and attacks on the rise

Keep a watchful eye on your email inbox. Our internal security team has been noticing an uptick in malicious email campaigns sent to inboxes. These emails are phishing attempts. They’re designed to trick you into responding with action or information. Some might contain viruses or other malicious software, while others may steal your usernames, passwords, or… Continue Reading

Can you spot the phish?

Scammers love a good phishing email scheme because they’re so efficient. With the creation of one real-looking message, they can trick hundreds, if not thousands of people into revealing personal information. From banking and credit card information, to usernames and passwords, they do their best to create an email lure to reel you in. Each… Continue Reading

BendBroadband modem not affected by Russian malware

The Federal Bureau of Investigation (FBI) is asking more than 500,000 Americans to reboot their routers. This is because hackers infected consumer-level routers used in homes and small offices with malware. The incident is believed to be a Russian military-related hacking and has affected half a million routers and storage devices in 54 countries, including… Continue Reading

BendBroadband Phishing scam alert

BendBroadband Phishing scam alert

BendBroadband Customer alert: Phishing attempts are still being reported. These emails ask you to update your payment information including entering your credit card or e-check account info. These emails are NOT from BendBroadband and should be deleted immediately. Do not reply with information or click on any provided links. As a reminder, BendBroadband will never ask for… Continue Reading

How to change your Facebook App settings

How to change your Facebook App settings

Privacy concerns on Facebook have not gone away. Facebook users and government regulators are demanding more transparency. Users need to remember that every action taken on Facebook has privacy and sharing implications. When you take those quizzes that show up in your Facebook feed, play games, or log in to other websites with your Facebook… Continue Reading