Over 33,600 online accounts hacked, costing victims £1.4 million, Action Fraud warns
Data from Action Fraud reveals that more than 33,600 online accounts were hacked between August last year and today, resulting in £1.4 million in losses for victims.
In response, Action Fraud has launched a new awareness campaign as part of Cyber Security Awareness Month to encourage the public to strengthen their social media and email account security.
Adam Mercer, Deputy Director of Action Fraud, highlighted the growing threat posed by cyberattacks, saying: “Cyberattacks and hacking are carried out by faceless cybercriminals who target unsuspecting victims looking to take advantage of unprotected social media and email accounts.”
“With this being the top cybercrime reported last financial year, it’s even more important to take action and ensure you lock down your accounts.”
The campaign emphasises the importance of using strong, unique passwords and enabling 2-step verification (2SV) to better protect accounts from hackers.
Mercer added, “All your passwords should be different and never shared with anyone else. If you have the option, enable 2-step verification to ensure you have twice the protection for all your accounts.”
Methods of Hacking
Among the various hacking methods reported to Action Fraud, two stood out:
- On-platform chain hacking: Fraudsters gain control of an account and impersonate the owner, tricking people into sharing authentication codes sent via text. Victims often believe they are interacting with a friend, unknowingly giving hackers access to their own account. Once in control, hackers use the account to promote fraudulent schemes.
- Leaked passwords and phishing: Another widespread method involves using account details leaked in data breaches or obtained through phishing scams. As many people reuse passwords across multiple sites, a single leaked password can give hackers access to several online accounts.
Tips for Protecting Your Accounts
To avoid becoming a victim of hacking, Action Fraud advises the following steps:
- Use strong, unique passwords: Ensure that each of your accounts has a different password. A simple method is to combine three random words that are easy to remember but hard for others to guess.
- Turn on 2-step verification (2SV): This adds an extra layer of security by requiring a second form of verification, such as a code sent to your phone, when logging in from a new device or changing key settings.
For those living in Wales, England or Northern Ireland who have fallen victim to fraud or cybercrime, Action Fraud encourages reporting incidents at www.actionfraud.police.uk or by calling 0300 123 2040.
Suspicious emails can be forwarded to the National Cyber Security Centre’s Suspicious Email Reporting Service (SERS) at [email protected].
To learn more about protecting yourself from fraud, visit StopThinkFraud.
Spotted something? Got a story? Send a Facebook Message | A direct message on Twitter | Email: [email protected] Latest News