Equifax Data Breach

The personal data of up to 44 million British consumers was feared stolen by hackers in a massive cyber attack on Equifax.

The information commissioner said it was investigating how the hack on Equifax, a US credit rating firm, affected UK customers, many of whom will be unaware their data is held by the company.

Equifax and its UK subsidiary companies state on their websites that they represent British clients including BT, Capital One and British Gas.

The Information Commissioner’s Office has urged Equifax to alert affected UK customers as soon as possible, and said it will work with the relevant overseas authorities on behalf of British citizens.

Equifax admitted hackers had exposed the personal data of 143 million customers in the US, which was stolen between mid-May and July this year due to a vulnerability on its website. The hack was not made public until recently.

The stolen information includes names, social security numbers, dates of birth, addresses and, in some instances, driver’s license details. It is also thought that around 209,000 credit card numbers were stolen.

Equifax said: “limited personal information” from British and Canadian residents had been compromised.

A spokesman for BT said: “We are aware of the developing story and are monitoring the situation closely. Like many companies in the UK, BT uses Equifax services. We are working on establishing whether this breach has any impact on those services.”

Lenders rely on the information collected by credit bureaus such as Equifax to help them decide whether to approve financing for homes, cars and credit cards.

Equifax chief executive Richard Smith said in a statement “I apologise to consumers and our business customers for the concern and frustration this causes.”

How to check if you are affected – go online to https://trustedidpremier.com/eligibility/eligibility.html and type in your last name and last 6 digits of your social security number and it should tell you if you have been affected by the data breach.

Do enter your email address and click on the subscribe button on top right to keep up to date with new posts.

September 13, 2017

Journalist Turns Anonymised Data into Profiles

A journalist and a data scientist secured anonymised browsing data for three million users. They created a fake marketing company to get the data and were able to de-anonymised much of it i.e. they could identify the users.

Anonymised data means the names have been removed along with supposedly anything that makes it possible to identify the individuals.

How is that Possible?

There are various techniques that can be used to identify people in the data, such as:-

Anyone who visits their own Twitter analytics page will have a URL in their browsing record which contains their Twitter username. Find that URL, and you’ve linked the anonymous data to an actual person.
A similar trick works for German social networking site Xing.

For other users, a more statistical approach can be used to de-anonymise the data. For instance, just 10 URLs can be enough to uniquely identify someone. For instance, how few people there are at your company, with your bank, your hobby, your preferred newspaper and your mobile phone provider. By creating “fingerprints” from the data, it’s possible to compare it to other, more public, sources of what URLs people have visited, such as social media accounts, or public YouTube playlists.

Eckert, a journalist, worked up with data scientist Andreas Dewes to acquire personal user data and see what they could get from it. They created a fake marketing company, complete with its own website, a LinkedIn page for its chief executive, and even a careers site.

The pair presented their findings at the Def Con hacking conference in Las Vegas

They made the site full of pictures and marketing buzzwords, claiming to have developed a machine-learning algorithm which would be able to market more effectively to people, but only if it was trained with a large amount of data. Then they asked companies for anonymised data to try on their system.

The data they were eventually given came, for free, from a data broker, which was willing to let them test their hypothetical AI advertising platform.

Another discovery through the data collection occurred via Google Translate, which stores the text of every query put through it in the URL. From this, the researchers were able to uncover operational details about a German cybercrime investigation, since the detective involved was translating requests for assistance to foreign police forces.

Where did all of the data come from? A number of browser plugins collect data, Google Translate collects data and various websites collect this data.

It is supposed to be anonymised when passed on to ensure no-one can identify the individuals, but this clearly is not true.

Do leave a comment on this post – click on the post title then scroll down to leave your comment.

September 11, 2017

The Bitcoin Money Making Scam

Bitcoin is a cyber currency. This means there is no physical currency and it’s not controlled by a country or bank.

Bitcoin is probably the most widely used of the cyber currencies and is famous as the method of payment used by hackers, ransomware fraudsters and assorted other criminals.

Not all users of Bitcoin are criminals of course.

With cyber currencies there is method available for making more of it, but this is a very complex process and requires enormous amounts of computer power to do so. The more that is made the more difficult it becomes to make any more. This is to protect the value of the currency.

Emails have started to appear claiming that Bitcoin allows people to profit without paying any fees and that you can make Bitcoins every day.

“A group of clever Russian developers are working on a tool that will allow people to make Bitcoins every day”

“This is feared by the established banking institutions to the point of trying to ban it”

And so on with the usual rubbish in these scam emails.

It is a scam.

Bitcoin is not a guaranteed way to make money – it’s just a currency that is sadly abused by many to the detriment of others.

Do you have an opinion on this matter? Please comment in the box below.

September 10, 2017

Stupidest Scam or Spam of the Week

An email titled “This miracle nutrient starves disease from your body”.

A catchy title but heralds the stupidity that follows.

There’s a nutrient that STARVES any harmful bacteria, germ or virus.

It’s not a nutrient if it causes starvation. Germ in this case means disease causing bacteria or virus hence “bacteria, germ or virus” is repetition.

Further on in the email, it claims the nutrient makes healthy cells grow stronger and faster. It also cures cancer and is anti-aging. So, there’s little it cannot do.

Plus it’s natural, non-toxic and has no side effects.

This scammer clearly hasn’t been warned about overkill.

Of course, as usual with these scams, Big Pharma is trying to destroy this, so you have to buy it before it disappears.

People will fall for a lot of stupid stories but when something is the answer to every problem – I hope even the most gullible cannot believe this.

Do leave a comment on this post – click on the post title then scroll down to leave your comment.

September 9, 2017

Time-Wasters Update

So, what rubbish emails and calls have there been to Brooklands Radio station in the last few days?

Rapid Racking send out endless spam messages – this one saying only 4 days left of double discount. Can’t see anyone buying industrial racking just because of a small discount.

“Take Surveys For Cash”. Earn $390 by talking a few simple surveys. The truth is that people do make money filling in surveys online but its hours of slog for a pittance because there is huge demand for such work at home opportunities.

Don’t miss out on this new fat burning breakfast food. Turns out to be coconut oil, for which some people claim almost miraculous properties. But it is fat and certainly not a fat burner.

Now you can use 100% of your brain with this new product as shown on Shark Tank. This is the usual rubbish and the Shark Tank series is well known for sometimes showing scam products that they only realise after the show are fake.

A new report titled ‘The 7 Laws of Wealth Attraction”. This idea has been done to death long ago as half the planet did read about these supposed laws then wished they hadn’t bothered.

Do click on the Facebook or Twitter icons on top right to follow Fight Back Ninja

September 8, 2017

Amateur Detective Recovers Stolen Money

Gideon Roseman was scammed out of a lot of money. He had builders working on his home and fraudsters hacked in to the builder’s email system. They sent a message to Roseman impersonating the builder, asking for a down payment to start work. Roseman paid £20,400 to what he though was the account of his builder.

The next day his wife Esther found an email from the builder warning his customers that his email had been hacked and Roseman realised his payment had gone to the hackers.

The builder had checked his emails and found messages to a number of customers demanding payment to a bank account he did not recognise.

Roseman said “I wasn’t filled with optimism when I spoke to my bank, so I felt as though the only way I would get my money back is to take things into my own hands.”. He is a barrister so had a head start over most of us in dealing with the legal system.

He went to the High Court in London to apply for the fraudster’s bank account to be frozen.

The judge agreed it appeared he had been the victim of fraud and granted the order.

Mr Roseman then contacted Santander Bank’s court orders department and it froze the account.

He soon received another email from the fraudster asking for more money to “cover the VAT” on the work.

Mr Roseman played along and managed to obtain the sort codes and details of another two accounts — one at Barclays and another at Santander.

He then returned to the High Court to get these accounts frozen and the judge again approved his application.

The court ordered Barclays and Santander to release all contact details and bank statements for the frozen accounts and using these, Mr Roseman tracked down £5,655 in several Santander accounts connected to the fraudster and the bank agreed to return the money.

He also noticed the scammer had transferred around £5,000 to a haulage firm, which repaid his money.

The bank accounts also revealed £9,150 was transferred out of the fraudster’s account more than 24 hours after Mr Roseman first reported the incident to Barclays.

Barclays denied any delay but later agreed to pay the remaining £9,150.

It added £200 compensation. This left £395 outstanding, which the builder took off his bill.

Mr Roseman said “Hopefully, I’ve shown that despite what the banks might say, it is possible to track down cash after it’s disappeared and get the money back.”

“My advice to scam victims is to act immediately. Call your bank, gather evidence and instruct a solicitor to get to court as quickly as you can to freeze the accounts.”

Well done Gideon Roseman – a true Ninja.

If you’ve enjoyed this post or found it useful then do share – click on the post title then scroll down to the social media share buttons.