searchtwitterarrow rightmail strokearrow leftmail solidfacebooklinkedinplusangle upmagazine plus
Help Net Security - Daily information security news with a focus on enterprise security.
  • News
  • Features
  • Expert analysis
  • Videos
  • Reviews
  • Events
  • Reports
  • Whitepapers
  • Industry news
  • Product showcase
  • Newsletters
  • (IN)SECURE Magazine
Help Net Security
Help Net Security
February 11, 2021
Share

People are often the collateral damage of attacks on corporations

Thanks to cyberattacks making regular headlines in the news, it’s no secret that massive data breaches are a significant threat to organizations. However, a report from F-Secure highlights the rarely-discussed impact these attacks can have on people and families using online services.

attacks corporations damage people

According to the report, nearly 3 out of every 10 respondents to the survey experienced some type of cybercrime (such as malware/virus infections, unauthorized access to email or social media accounts, credit card fraud, cyber bullying, etc.) in the 12 months prior to answering.

However, cybercrime was roughly three times more common among respondents using one or more online services that had been breached by attackers. 60% of respondents belonging to this group – called “The Walking Breached” in the report – experienced cybercrime in the 12 months leading up to the survey, compared to just 22% of other respondents.

Cybercrime was even more prevalent among respondents with kids, with 7 out of 10 saying they experienced one or more crimes.

“Personal information stolen from organizations can easily end up being used against people and families through different types of identity theft, fraud, or other types of harm. And with more and more information being stored digitally, what criminals can do with people’s information keeps getting worse. So these attacks on companies can really end up hurting people and not just a business’ bottom line,” explained Laura Kankaala, a security consultant with F-Secure.

How attacks on corporations damage people

Stress and concern was the most common effect of cybercrime, followed closely by loss of time – both of which affected about half of all cybercrime victims surveyed. Certain losses due to cybercrime were more common among The Walking Breached than other respondents: loss of money, personal information, and loss of control over personal information or accounts.

Notably, half of The Walking Breached that experienced cybercrime prior to filling out the survey reused passwords, and 69% reused passwords with slight variations.

Entire industries have developed to help cybercriminals monetize people’s personal data. Account passwords and login credentials, for example, are often bought and sold. These industries fuel the risks of fraud and other crimes for people whose information has been stolen.

Attackers threatening to leak information

And in a new trend, attackers who use encryption to hold organizations’ data for ransom are now stealing that information and threatening to leak it, demonstrating the lengths criminals will go to profit from people’s data.

In one particularly severe incident involving the breach of a company operating psychotherapy clinics, an extortionist (or extortionists) threatened to release the personal information and therapy records of former patients unless those individuals paid a ransom.

According to Kankaala, people rarely think about how valuable the information stored in online accounts really is until that information is gone or exposed.

“Recovering hacked or lost social media accounts can sometimes be really difficult and we tend to recognize the value of something only once it’s gone. These accounts are not ‘just social media’ or ‘just email’ – they hold records of our past, pictures we may have not stored anywhere else or conversations that are either private or something we’ll miss once they’ve been deleted,” said Kankaala.




More about
  • account hijacking
  • cyber risk
  • cyberattack
  • cybercrime
  • cybersecurity
  • data breach
  • encryption
  • F-Secure
  • malware
  • privacy
  • ransomware
  • social media
  • survey
  • threats
Share this

Featured news

  • You should be able to trust organizations that handle your personal data
  • VMware issues critical fixes, CISA orders federal agencies to act immediately (CVE-2022-22972)
  • Many security engineers are already one foot out the door. Why?
Easily migrate to the cloud with CIS Hardened Images

What's new

Ransomware still winning: Average ransom demand jumped by 45%

3 key elements to protect a Kubernetes cluster

You should be able to trust organizations that handle your personal data

By streamlining compliance, companies can focus more on security

Don't miss

You should be able to trust organizations that handle your personal data

3 key elements to protect a Kubernetes cluster

Ransomware still winning: Average ransom demand jumped by 45%

Two business-grade Netgear VPN routers have security vulnerabilities that can’t be fixed

How to ensure that the smart home doesn’t jeopardize data privacy?

Help Net Security - Daily information security news with a focus on enterprise security.
Follow us
  • Features
  • News
  • Expert Analysis
  • Reviews
  • Events
  • Reports
  • Whitepapers
  • Industry news
  • Newsletters
  • Product showcase
  • Twitter

In case you’ve missed it

  • Data centers on steel wheels: Can we trust the safety of the railway infrastructure?
  • Good end user passwords begin with a well-enforced password policy
  • Keep your digital banking safe: Tips for consumers and banks
  • Is cybersecurity talent shortage a myth?

(IN)SECURE Magazine ISSUE 71 (March 2022)

  • Why security strategies need a new perspective
  • The evolution of security analytics
  • Open-source code: How to stay secure while moving fast
Read online
© Copyright 1998-2022 by Help Net Security
Read our privacy policy | About us | Advertise