Has Your Information Been Leaked?

Over the weekend, cybersecurity experts revealed that about half a billion Facebook users’ personal information was breached exposing information such as full names, birthdays, phone numbers and locations. A third-party website, haveibeenpwned.com allows you to input your information such as phone number or email to check if you are among those whose information has been stolen. Discovering exposed passwords early in a potential breach timeline is key to limiting damage. That is because immediately after a breach, criminals first keep stolen data close, cracking passwords and systematically monetizing the information.

Identities are now being compromised by the stolen information where the hacker in possession of your phone number and personal identifiable information links that phone to another SIM card. SIM swapping occurs when someone contacts your wireless carrier and using your leaked information can convince the call center employee that they you. Once your phone number is assigned to a new card, all your incoming calls and text messages will be routed to whatever phone the new SIM card is in. By doing so, it enables access to apps, cloud storage, email accounts and most importantly any two-factor authentication codes you receive through text messages.

What can you do?

Contact your mobile service provider to find out what additional security measures are available if your phone is lost or stolen or has been compromised. You can decrease your chances of someone gaining access to and taking over your phone number by adding a PIN code or password to your wireless account. T-Mobile, Verizon and AT&T all offer the ability to add a PIN code. When creating a PIN or passcode, keep in mind that if someone has enough information to fake that they are actually you, using a birthday, anniversary, or address as the PIN code isn’t going to cut it. Instead, create a unique passcode for your carrier and then store it in your password manager. You are using a password manager, right?