Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Even Amazon Can Be Hacked

Even Amazon Can Be Hacked

In 2018, Amazon was struck by a considerable attack, with hackers taking funds from approximately 100 seller accounts, according to a Bloomberg report. Between May and October 2018, Amazon sellers were struck approximately 100 times, draining funds from the seller control platform to augment their own funds. According to the investigation, the first fraudulent transaction took place on May 16, 2018, with an undisclosed amount being stolen. The hackers utilized phishing attacks in order to scam their targets.

“Unknown Hack”

On May 8, 2019, almost a year to the day after the first transaction was made, an Amazon spokesperson claimed that the company had completed investigating the compromised accounts, and had been the victim of an “extensive” fraud. The extent of the fraud was large enough where two banking companies, Barclays and Prepay Technologies (who is a partial subsidiary of Mastercard) are caught up in the crime.

Ultimately, Amazon neglected to disclose the true scope of the hack, but a report by Bloomberg indicated that over one billion dollars were dispersed to merchants in 2018 via Amazon Capital Services U.K. While there is currently no figure provided by the company, if large portions of that money was subverted, it could rank as one of the largest hacks in the history of online commerce, and certainly the biggest fraud that has involved Amazon. 

Amazon, which has a business model built to be largely automated, has done a remarkable job of keeping personally identifiable information from being hacked over the years, but in today’s threat-persistent culture, even the most secure companies can have situations happen to them that jeopardize their ability to complete financial and information transactions, regardless of how much they invest in cybersecurity.

Phishing Attacks

Just because this article mentions a major fraud involving the world’s largest online retailer in no way means that hackers have moved on from trying to hack small businesses. Small businesses face the majority of hacking attacks, mainly because they have the least amount of security to thwart. In fact, if Amazon can fall victim to phishing attacks, it’s not a stretch to believe that your company is susceptible. With millions of phishing messages sent every day, many of which target small businesses, having a strategy to educate your staff is extremely important.

The best way to go about doing that is to be proactive. Getting your staff to understand that they are on the front lines of a never-ending cyberwar and what they need to learn in order to keep themselves, and your organization free from the serious risks that come from falling victim of phishing attacks. Some things you can prioritize:

  • Annual education and training - Have a comprehensive plan in place to educate new and current staff that is updated and required annually.
  • Having strong passwords - Since phishing is a form of social engineering, the hackers on the other end of the phishing attack are simply looking for access. Having strong passwords will keep them out much longer than weak ones. 
  • Avoid shadow IT - Make it clear that all software has to pass through IT first, before it is downloaded onto a workstation. It may seem inefficient at first, but the company will be better off vetting a software solution before it gains access to your organization’s network.
  • Provide cloud storage - When people are constantly on the move and have a lot of responsibilities, they will often upload their work into their personal cloud-based file storage. This can be risky behavior, even if the employee’s motives are solid. Keep your company’s data hosted on its own infrastructure.

With these four tips you can go a long way toward protecting your business, and your staff, from the detrimental characteristics of a phishing attack.

If you need help with your organization’s cybersecurity, or if you simply want some help outlining a strategy to use, contact the IT professionals at Total Tech Care today at 866-348-2602.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, 25 December 2024
If you'd like to register, please fill in the username, password and name fields.

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Software Efficiency Network Security Business Google Microsoft Internet Email Malware Backup Workplace Tips Innovation User Tips Data Computer Mobile Devices Hardware IT Services Disaster Recovery Android VoIP communications Business Continuity IT Support Smartphones Communication Miscellaneous Smartphone Mobile Device Browser Small Business Network Collaboration Productivity Cybersecurity Quick Tips Users Business Management Phishing Windows Managed IT Services Upgrade Outsourced IT Ransomware Data Backup Windows 10 Cloud Computing Data Recovery Office Server Save Money Windows 10 Passwords Virtualization Social Media Saving Money Holiday Gadgets Tech Term Chrome Automation Managed IT Services Managed Service Microsoft Office Facebook Computers Cybercrime Artificial Intelligence Operating System Health BYOD Internet of Things Mobile Device Management Networking IT Support Wi-Fi Hacking Remote Information Technology Covid-19 Information Alert Spam Managed Service Provider Office 365 Telephone Systems Router Recovery Employer-Employee Relationship BDR Bandwidth Social Engineering Mobility Encryption Applications Mobile Computing Human Resources Law Enforcement Application Data Breach Remote Monitoring Password Big Data Money App History Training How To VPN Government Blockchain Data Storage Patch Management Paperless Office Remote Computing Private Cloud Mobile Office Managed IT Apps Office Tips Flexibility Google Drive Marketing Gmail WiFi Settings IT solutions Entertainment Website Avoiding Downtime Budget Two-factor Authentication Vulnerability Windows 7 Word Mouse HaaS Servers Infrastructure Voice over Internet Protocol Bring Your Own Device Data Management Work/Life Balance Data Security Wireless Education Physical Security The Internet of Things Lithium-ion battery Safety Sports HIPAA Redundancy Keyboard Firewall Vendor Conferencing Managed Services USB Staff Software as a Service Display Telephone System Virtual Reality Scam Apple Machine Learning Social Connectivity Remote Work Save Time Employee/Employer Relationship User Error RMM Vendor Management Meetings Cleaning Risk Management Hacker End of Support Data Protection DDoS Value Unified Threat Management Internet Exlporer Procurement Comparison Net Neutrality Computer Accessories SharePoint Workplace Strategy Spam Blocking Electronic Medical Records PDF Help Desk CES Printing Customer Service Hiring/Firing Proactive IT Business Technology Environment Content Management Access Control Printer Best Practice Fax Server Bluetooth Managed Services Provider YouTube Virtual Assistant Authentication Database Black Market SaaS Remote Workers Business Intelligence Audit IT Consultant Document Management Processor Worker Solid State Drive Update Wireless Technology Network Congestion IT Management eWaste How to Downtime Botnet Hard Drive Humor Google Docs IT Plan Identity Theft Data storage Automobile Computing Unsupported Software Wearable Technology Computing Infrastructure Retail Hard Drives Charger Instant Messaging Going Green Augmented Reality Robot Excel Fraud Compliance OneNote Computer Care Biometrics Current Events Digital Signage Remote Worker Telephony Virtual Desktop Battery Shadow IT Cryptocurrency Samsung Legal Virus Windows Media Player Skype Cache AI User Science Amazon Web Services IT Infrastructure PowerPoint Advertising Bing Safe Mode FinTech Data loss Politics Criminal Outlook Hosted Computing Social Network Leadership Troubleshooting GDPR Notifications Distributed Denial of Service Start Menu Customer Relationship Management Wireless Internet Managing Stress Online Shopping Investment Loyalty File Sharing Employees Screen Mirroring Analyitcs Employee/Employer Relationships Frequently Asked Questions Programming Inventory Specifications ISP Books Cameras Camera Windows 365 Mobile Wire Video Conferencing Windows 10s Evernote ROI Relocation Travel Shortcuts Sales Cast Bitcoin Printers Point of Sale Tip of the week Personal webinar Video Games Millennials Cryptomining Emergency Antivirus Professional Services Smart Office Supply Chain Management Public Cloud Windows 8 Worker Commute Wireless Charging Employer Employee Relationship Batteries Assessment IT service Monitoring Experience Virtual Private Network Windows 8.1 Windows Server 2008 Digitize Scalability Workforce Printer Server Tools Tablet Business Owner Cables Windows Server 2008 R2 Television NarrowBand Domains Customer relationships Project Management Email Best Practices Nanotechnology IT Assessment Search Telecommuting Manufacturing IaaS Maintenance Cortana iPhone Digital Signature Managed IT Service Public Computer Security Cameras Computer Tips Bloatware Warranty Virtual CIO Regulations OneDrive Biometric Security Transportation Files HVAC Peripheral Computer Fan Tablets Google Apps Rootkit Entrepreneur Analysis Using Data Chromecast Digital Security Cameras Administrator Devices Copiers Workers 5G Benefits Colocation Uninterrupted Power Supply Shortcut Enterprise Content Management Quick Tip FENG Cost Management Accountants IBM Consultant Smartwatch MSP Ergonomics Microchip Flash Social Networking Thought Leadership Development Credit Cards OLED Smart Technology Analytics Monitor Password Management PCI DSS Password Manager Virtual Machine Fiber Optics Supercomputer Best Available Multi-Factor Security Employee 2FA Software Tips Streaming Media Running Cable Search Engine Sync Twitter Messaging Emails WIndows 7 Cabling Reputation Tech Support NIST Policy Memory Content Business Mangement Hypervisor Smart Tech Trend Micro Techology Trending Laptop Dark mode Addiction SMS Netflix Amazon Default App Two Factor Authentication Customers Procedure Root Cause Analysis Audiobook Recycling Saving Time HBO Practices Shopping Knowledge Google Search Music Touchpad Wiring dark theme

      Top Blog

      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      QR-Code