[et_pb_section fb_built=”1″ _builder_version=”4.17.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_row _builder_version=”4.17.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_column type=”4_4″ _builder_version=”4.17.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_text _builder_version=”4.27.4″ _module_preset=”default” hover_enabled=”0″ global_colors_info=”{}” theme_builder_area=”post_content” sticky_enabled=”0″]<\/p>\n
There are no silver bullets. No one can guarantee you won\u2019t be hacked, but we can make it harder.<\/p>\n
The key is to have layers of security, and to keep reviewing the technology in use to ensure it keeps up with a rapidly changing world.<\/p>\n
We keep saying that the cyber-protection that seemed excessive a year ago feels inadequate now.
One of the most important protections is multi-factor authentication, \u201cMFA\u201d or \u201c2FA\u201d. We know it\u2019s annoying and intrusive, but highly effective. Nevertheless, it can be defeated.<\/p>\n
[\/et_pb_text][\/et_pb_column][\/et_pb_row][et_pb_row column_structure=”1_2,1_2″ _builder_version=”4.17.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_column type=”1_2″ _builder_version=”4.17.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_text _builder_version=”4.17.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”]<\/p>\n
Here\u2019s one trick to watch out for. Look out for a call from someone claiming to be from your bank or IT department or similar. They might say something like \u201cbefore I will talk with you, I need you to prove who you are, by giving me your MFA code.\u201d Of course, the second you tell them, they immediately use it and can do whatever they want, from stealing your money, resetting some of your passwords or setting up an impersonation of you.<\/p>\n
Here is the sneaky part. The hacker may not even speak the victims language and they don’t want to call them directly, exposing their own phone number. So the hacker purchases a online system for $400 a month. That system uses Interactive Voice Response to call the victim.<\/p>\n
[\/et_pb_text][\/et_pb_column][et_pb_column type="1_2" _builder_version="4.17.4" _module_preset="default" global_colors_info="{}" theme_builder_area="post_content"][et_pb_image src="https:\/\/new.kinetics.co.nz\/wp-content\/uploads\/2022\/06\/CyberRobot.png" title_text="CyberRobot" _builder_version="4.17.4" _module_preset="default" global_colors_info="{}" theme_builder_area="post_content"][\/et_pb_image][\/et_pb_column][\/et_pb_row][et_pb_row _builder_version="4.17.4" _module_preset="default" global_colors_info="{}" theme_builder_area="post_content"][et_pb_column type="4_4" _builder_version="4.17.4" _module_preset="default" global_colors_info="{}" theme_builder_area="post_content"][et_pb_text _builder_version="4.27.4" _module_preset="default" hover_enabled="0" global_colors_info="{}" theme_builder_area="post_content" sticky_enabled="0"]<\/p>\n
This technique only works if the hacker already somehow has your username and password, AND you tell them your MFA code.<\/span><\/p>\n Likewise, always check the website you are logged into \u2013 where possible, don\u2019t click on the link in emails but rather type in the URL yourself or use your \u2018favourites\u201d list . We have heard of a situation where hackers copied the login page of a well known NZ bank, and tricked users to go to their fake site, and enter their username, password and MFA code.<\/p>\n It helps to layer security.\u00a0 In this case, using KARE for Security’s<\/a> web protection checks the URL’s you access against known databases and reduces the risk of accidently accessing a bad website.<\/p>\nLuckily KARE for Security<\/a> can help reduce the risk by checking URLs for you.<\/h2>\n