094 90 48200     Get SUPPORT

Aniar IT Services Blog

By accepting you will be accessing a service provided by a third-party external to https://www.aniar.ie/

Even Amazon Can Be Hacked

Even Amazon Can Be Hacked

In 2018, Amazon was struck by a considerable attack, with hackers taking funds from approximately 100 seller accounts, according to a Bloomberg report. Between May and October 2018, Amazon sellers were struck approximately 100 times, draining funds from the seller control platform to augment their own funds. According to the investigation, the first fraudulent transaction took place on May 16, 2018, with an undisclosed amount being stolen. The hackers utilized phishing attacks in order to scam their targets.

“Unknown Hack”

On May 8, 2019, almost a year to the day after the first transaction was made, an Amazon spokesperson claimed that the company had completed investigating the compromised accounts, and had been the victim of an “extensive” fraud. The extent of the fraud was large enough where two banking companies, Barclays and Prepay Technologies (who is a partial subsidiary of Mastercard) are caught up in the crime.

Ultimately, Amazon neglected to disclose the true scope of the hack, but a report by Bloomberg indicated that over one billion dollars were dispersed to merchants in 2018 via Amazon Capital Services U.K. While there is currently no figure provided by the company, if large portions of that money was subverted, it could rank as one of the largest hacks in the history of online commerce, and certainly the biggest fraud that has involved Amazon. 

Amazon, which has a business model built to be largely automated, has done a remarkable job of keeping personally identifiable information from being hacked over the years, but in today’s threat-persistent culture, even the most secure companies can have situations happen to them that jeopardize their ability to complete financial and information transactions, regardless of how much they invest in cybersecurity.

Phishing Attacks

Just because this article mentions a major fraud involving the world’s largest online retailer in no way means that hackers have moved on from trying to hack small businesses. Small businesses face the majority of hacking attacks, mainly because they have the least amount of security to thwart. In fact, if Amazon can fall victim to phishing attacks, it’s not a stretch to believe that your company is susceptible. With millions of phishing messages sent every day, many of which target small businesses, having a strategy to educate your staff is extremely important.

The best way to go about doing that is to be proactive. Getting your staff to understand that they are on the front lines of a never-ending cyberwar and what they need to learn in order to keep themselves, and your organization free from the serious risks that come from falling victim of phishing attacks. Some things you can prioritize:

  • Annual education and training - Have a comprehensive plan in place to educate new and current staff that is updated and required annually.
  • Having strong passwords - Since phishing is a form of social engineering, the hackers on the other end of the phishing attack are simply looking for access. Having strong passwords will keep them out much longer than weak ones. 
  • Avoid shadow IT - Make it clear that all software has to pass through IT first, before it is downloaded onto a workstation. It may seem inefficient at first, but the company will be better off vetting a software solution before it gains access to your organization’s network.
  • Provide cloud storage - When people are constantly on the move and have a lot of responsibilities, they will often upload their work into their personal cloud-based file storage. This can be risky behavior, even if the employee’s motives are solid. Keep your company’s data hosted on its own infrastructure.

With these four tips you can go a long way toward protecting your business, and your staff, from the detrimental characteristics of a phishing attack.

If you need help with your organization’s cybersecurity, or if you simply want some help outlining a strategy to use, contact the IT professionals at Aniar IT Services today at 094 90 48200 .

Tip of the Week: Using Digital Signage
Windows 7 and Windows Server 2008 R2 is Finally Lo...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, July 15 2020

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Tip of the Week Security Technology Business Computing Productivity Best Practices Cloud Privacy Email Network Security Innovation User Tips Workplace Tips Hosted Solutions Internet Microsoft Efficiency Data IT Support Google Hardware Software Hackers Data Backup Data Recovery Business Communication Cloud Computing Smartphones VoIP Cybersecurity Small Business Tech Term Managed IT Services Mobile Devices Communications Collaboration IT Services Windows 10 Phishing Computer Android Gadgets Backup Mobile Device Malware Business Continuity Users Saving Money Artificial Intelligence Smartphone Outsourced IT Network Browser Internet of Things Windows Information Disaster Recovery Business Management Facebook Miscellaneous Upgrade Spam BDR Server Managed Service Router Social Media Chrome How To Quick Tips Passwords Automation Office 365 Computers Data Security Applications Data Storage Windows 7 Apps Blockchain Microsoft Office BYOD Paperless Office Holiday Word Cybercrime Remote Monitoring Connectivity Settings Virtualization Money Display Mobile Device Management Managed IT Encryption Wi-Fi Human Resources Two-factor Authentication Infrastructure History Networking Bandwidth Staff Data Breach Vulnerability Government Operating System Remote Work Data Protection Patch Management Save Money HIPAA Telephone System Ransomware Mobile Office Procurement Private Cloud IT Plan Vendor OneNote Help Desk Google Docs Compliance Digital Signage Law Enforcement Sports Machine Learning Access Control Telephony Employee/Employer Relationship CES Unsupported Software Cryptocurrency Training Fraud Software as a Service Scam Business Intelligence Update Content Management Keyboard Spam Blocking Botnet Augmented Reality VPN Processor Password Virtual Assistant Managed IT services Bring Your Own Device Vendor Management IT Management Business Technology Redundancy Voice over Internet Protocol App Telephone Systems Hard Drive Health Social Engineering Meetings Google Drive Avoiding Downtime Big Data Website Education Managed Services Provider Identity Theft Servers Comparison Audit Supply Chain Management Addiction Unified Threat Management Cables Trend Micro Online Shopping Root Cause Analysis NIST SMS Gmail Cast File Sharing ISP Value Workforce OLED Using Data Credit Cards PDF HVAC Flash Specifications Wireless Batteries PCI DSS Data Management Printer Tip of the week Remote Computing IT Assessment Workers Trending Managed Services Public Cloud Mobile Computing Default App Shopping Evernote Cleaning Virtual Machine AI Recycling Devices Cryptomining Biometric Security Information Technology HaaS Data loss Google Search Virtual Private Network Computer Fan YouTube Mouse Windows Server 2008 Windows Server 2008 R2 OneDrive Authentication Safe Mode Security Cameras Covid-19 Cache Software Tips Policy Smart Office HBO IT Infrastructure Social Network Practices Hypervisor Remote eWaste Thought Leadership Remote Worker Database Telecommuting Manufacturing Computing Amazon Shortcuts Cortana Alert Save Time 5G Remote Workers FENG Microchip Computer Care Copiers Smartwatch Skype Peripheral Wireless Internet Procedure Document Management Camera Outlook Investment Printing Charger Hosted Computing Hacker Going Green Legal Wiring Travel The Internet of Things Virtual Reality Professional Services Amazon Web Services Accountants Enterprise Content Management Mobility Password Manager Nanotechnology Proactive IT Tools Work/Life Balance Managed IT Service Search Engine Development Start Menu Project Management Quick Tip USB Solid State Drive FinTech Printers Frequently Asked Questions Recovery ROI Personal Wireless Charging Inventory Multi-Factor Security Saving Time Office Criminal Twitter Windows 10s Firewall Cabling Fiber Optics Downtime Password Management Social Sync Messaging Business Mangement Smart Tech Screen Mirroring MSP Net Neutrality Millennials Digital Signature Bing WiFi Employee Bitcoin Regulations Electronic Medical Records Wire Physical Security Entertainment Warranty Excel GDPR Digitize Google Apps Employer-Employee Relationship Financial Domains Windows 10 Hard Drives Public Speaking Search Regulation Presentation Lithium-ion battery CrashOverride Emergency Wireless Technology Company Culture Tech Support Safety IBM Marketing Productivity Managed Service Provider Managing Stress Budget Competition Customer Relationship Management Hiring/Firing IP Address Fun Personal Information Customer Service