Around half of Australians have had their personal information stolen in the past few months after being caught up in the high-profile cyber hacks of two of Australia\u2019s biggest companies, Optus and Medibank.<\/p>\n
If you\u2019ve been a victim, what can you do to protect yourself against fraud and scams by people who now have your data \u2013 and prevent it happening again?<\/p>\n
<\/p>\n
There are ways to protect yourself against fraud and scams if you\u2019ve been affected by the recent data hacks.<\/span>Credit:<\/span>Matthew Absalom-Wong<\/cite><\/p>\n Choose your providers carefully: <\/b>It\u2019s easy to assume bigger businesses with more data are more likely to be targeted, but Nelson Yiannakou, head of financial crime at digital bank Revolut, doesn\u2019t think it\u2019s that simple. He says businesses large and small are targets, and it\u2019s their commitment to security rather than their size that matters.<\/p>\n For starters, he says, \u201can organisation who takes cybersecurity seriously should be compliant with the primary standards ISO 27001 and ISO 27002 which establish the requirements and procedures for creating an information security management system\u201d.<\/p>\n Use more than a password: <\/b>Two-factor authentication is now widely recommended for all your accounts \u2013 even social media. It means you not only have to enter a password, but also a code sent to your device.<\/p>\n Put a ban on your credit report: <\/b>Credit agencies such as Equifax, Experian and Illion and apps such as Credit Savvy can place a free temporary block on credit applications using your data for a few weeks, and you can then extend that period if need be. You can apply for bans with all three by engaging just one of them and requesting that they place bans across the board.<\/p>\n Subscribe to an \u2018identity protect\u2019 service: <\/b>This is a longer-term solution that monitors dark web postings and provides insurance if you\u2019re hacked. Optus and Medibank have bankrolled subscriptions for the worst-hit customers. It will cost you a monthly fee of about $10 to $15 and may be unnecessary if you\u2019ve done the credit ban above, but it might also give you some extra peace of mind.<\/p>\n Be more suspicious:<\/b> As fraud has become tougher for cyber crooks, they\u2019ve turned to innovative scams instead, Yiannakou says.<\/p>\n There was an uptick in \u201cremote access\u201d scams in 2022 where hackers took over people\u2019s devices. Criminals now also create \u2018mule\u2019 accounts under a victim\u2019s name but with a different account number and convince them to transfer money to it. Scammers have even sent text messages to some bank customers from the same number as legitimate bank messages.<\/p>\n Cyber incident community support service IDCare warns that if cybercriminals have your information, they can tailor their messages to you and pretend to be from Optus, Medibank, hospitals, banks, or the government.<\/p>\n \u201cDo not click on any links you are sent. Do not provide personal or credential information. Do not give remote access to your computer or mobile device. Do not provide any financial account details. Do not provide any payment \u2026 Make your own enquiries using an alternative contact method to the one they used,\u201d IDCare warns.<\/p>\n Yiannakou says there are red flags to watch out for, including pressure and requests for unusual methods of payment such as pre-paid cards, cryptocurrency or others. \u201cWhenever something looks and smells too good to be true and there\u2019s a physical person engaging and creating a sense of urgency \u2026 they are all the red flags and warning indicators to stop and think before you press pay.\u201d<\/p>\n Finally, you can check if your email address has been posted online by entering it at the website haveibeenpwned.com (although not yet updated with Optus and Medibank data) and take IDCare\u2019s free scam resilience test to see how susceptible you really are. I thought I was pretty safe. I scored 42 out of 100.<\/p>\n