LISS Notification: Security Alert
Dear LISS Consulting Corp.,
As you may have heard, UBER was breached in a massive hack which has leaked the information of 57 million customers and drivers. Uber paid the criminals the ransom to get the data back and claims to have proof of the destruction of the data. We advise our customers to take the following action if you have ever used UBER.
- Immediately change your password for your account for UBER and any other account which uses the same password and make sure to remove this password from use moving forward. Although UBER claims the passwords are not one of the items that were obtained in the breach it’s possible this info was simply not disclosed to UBER and it’s best to err on the side of caution.
- As per best practice if you have any accounts that support 2FA (two-factor authentication) we recommend enabling it. 2FA will provide a degree of protection and buy you some time in the event that your passwords are ever leaked in a breach. With 2FA in addition to a password, a user must enter a one-time code displayed in an app on their phone or sent via email or SMS.
- If you haven’t frozen your credit after the Equifax breach this is a good time to do it. The amount of threats focused on obtaining PII (personally identifiable information) is ever growing and freezing your credit provides active protection against would-be identity thieves. Unlike credit monitoring which simply alerts that you to activity that has occurred, a credit freeze is a preventive measure. The cost to freeze and unfreeze your credit varies by credit bureau and state of residence, please refer to the below site for more info:
- From a business standpoint, this is a good time to review your business continuity plan, DR preparations and internal security procedures for both physical and IT security.
Lastly, watch out for phishing emails related to this scam, scams such as “click here” to change your UBER account passwords are what we would expect to see a rise in after this news.
If you have any questions, or would like to schedule a security assessment please don’t hesitate to reach out to the helpdesk.
– For Critical Service Notifications please visit: www.lissconsulting.com/notices
* The contents of this email message are confidential & proprietary *
Message sent by: LISS Consulting Corp.