What To Do When Breached

UTS Support Posted on November 6, 2018 Posted in Remediation, Weekly Tip

The Tip

The odds are really against us when it comes to data/account breaches. It’s not really a question of if, so much as a question of when. How would we know that our account has been breached and what should we do about it?

The Detail

The first thing we should do is check to see if any of our accounts have been involved in known breaches. You’d be surprised at the major companies that have been compromised. Then we should sign up for a notification service for any future breaches that come to light.

If you have suffered a breach, follow these basic tips;

Keep calm and login immediately to anywhere you’ve used the compromised username/password. Change the password, being sure to use a strong and unique password.
If multi-factor authentication is available at the service, enable it right away. This is an easy way to greatly enhance your security.
Don’t recycle your passwords. If you were using the same password for more than one account, you need to login to each of those services and change it. It is critical for security to use unique passwords on all accounts. Start with the email account associated with this password and change it there first. Then work your way through any other service where you have used the same password, and start using unique passwords on all accounts.
If you’re worried about remembering all those robust new passwords, or even having trouble making them up, this is a good time to start using a password wallet.

Cybersecurity Month Ends

The final theme for cybersecurity month was How cyber security is driving the jobs of the future. There is a good read there with thoughts on education and career opportunities for the immediate future.

‘Junk gun’ ransomware: Peashooters can still pack a punch April 17, 2024
A Sophos X-Ops investigation finds that a wave of crude, cheap ransomware could spell trouble for small businesses and individuals – but also provide insights into threat actor career development and the wider threat landscape
Sophos Guidance on the Digital Operational Resilience Act (DORA) April 15, 2024
Guidance to support financial entities in the EU impacted by the Digital Operational Resilience Act (DORA).
A tumultuous, titanic Patch Tuesday as Microsoft makes some changes April 10, 2024
The largest CVE count in recent history rolls out
Smoke and (screen) mirrors: A strange signed backdoor April 9, 2024
Sophos X-Ops discovers a curious backdoored (and signed) executable, masquerading as something else entirely
Sophos Named Best MSP Solution by SE Labs April 9, 2024
Sophos has been recognized for enabling MSPs to effectively defend customers against today’s complex cyberattacks.
Introducing Sophos Managed Risk, Powered by Tenable April 3, 2024
Sophos Managed Risk combines vulnerability management technology from Tenable with Sophos’ threat expertise as a fully managed service.
Unpatched Vulnerabilities: The Most Brutal Ransomware Attack Vector April 3, 2024
While all ransomware attacks have negative outcomes, those that start by exploiting unpatched vulnerabilities have the greatest business impact.
It’s Oh So Quiet (?): The Sophos Active Adversary Report for 1H 2024 April 3, 2024
The latter half of 2023 found numerous fronts on which attackers failed to press ahead. Are defenders failing to take advantage?
Sophos Firewall Once Again Recognized as the #1 Firewall Solution by G2 Users April 1, 2024
Top rated based on a high customer satisfaction score and large market presence
The impact of compromised backups on ransomware outcomes March 26, 2024
Insights into the financial and operational implications of having backups compromised in a ransomware attack.

Nipissing University
100 College Drive, Box 5002
North Bay, ON, Canada
P1B 8L7
Tel: 705.474.3450
Fax: 705.474.1947

Phone Directory
NU Mail
Health & Safety
Site Map

MyNipissing
WebAdvisor
Blackboard
Library