What would we do without our smartphones, tablets, and computers? These internet-connected devices allow us to connect instantly with friends and family, order food, hail rides, pay our credit card bills, and so much more.
Our devices offer so many benefits and have become such an integral part of our lives that we often forget how much easier they make it for people to steal our information or take advantage of us.
According to Forbes, there was a 72 percent increase in data breaches between 2021 and 2023. Federal Bureau of Investigation (FBI) statistics show the reported global losses due to internet scams has grown from $3.5 billion in 2019 to $12.5 billion in 2023.
Not only are hackers trying to get sensitive information and money directly from us but they are also targeting the computer systems of government agencies, their contractors, and other companies that store our personal information.
Recent Cybersecurity Breaches
On August 16, The New York Times and The Washington Post both reported on a data breach at National Public Data (NPD), a company that stores personal information for background checks. NPD confirmed that Social Security numbers and other sensitive data had been compromised. Not much information about this breach has been disclosed, so the full extent of the consequences is not yet clear. NPD recommends consumers watch their financial accounts closely and put fraud alerts on their files at the biggest credit bureaus.
In early September, the Centers for Medicare & Medicaid Services (CMS) disclosed that there had been a data breach in 2023 that included personal data, such as protected health information, Medicare claims data, and personally identifiable information. The breach happened when hackers exploited a vulnerability in software used by Wisconsin Physicians Service Insurance Corporation (WPS), a CMS contractor.
The software vulnerability was quickly fixed but not before an unauthorized third party was able to copy files from the system. CMS and WPS are mailing letters to affected individuals to notify them of the data breach and what they can do to protect themselves.
Cybersecurity Awareness Month
In 2004, the National Cyber Security Division of the Department of Homeland Security and the nonprofit National Cyber Security Alliance started observing October as Cybersecurity Awareness Month. October 2024 will be the 21st Cybersecurity Awareness Month.
Cybersecurity Awareness Month is a collaboration between government agencies and private companies to promote cybersecurity awareness among internet users, encourage the public to reduce their online security risk, and generate discussion about national and global cyber threats. Learn more about Cybersecurity Awareness Month and how you can protect yourself.
Tips for Creating Strong Passwords
In light of recent cyberattacks and in recognition of this year’s Cybersecurity Awareness Month, consider some of the ways you can strengthen your online passwords.
Use at least 12 characters: The longer the password, the better. A minimum of 12 characters is recommended, though 16 or more is safer.
Include a mix of characters: Use a combination of uppercase letters, lowercase letters, numbers, and special characters, such as @, !, #, and $. This variety makes the password harder to crack through brute force attacks.
Avoid common words and phrases: Stay away from easily guessable information, such as your name, birthday, or simple phrases like "password123." Instead, use random combinations of letters and numbers.
Try passphrases: A passphrase is a sequence of random words, numbers, and symbols strung together. For example, "BlueElephant$#74Fly" is both memorable and secure. Using a phrase rather than a single word helps create longer, stronger passwords that are still relatively easy to remember.
Update passwords regularly: It’s a good practice to update your passwords periodically, especially for sensitive accounts, such as for financial and health care.
Enable multi-factor authentication (MFA): Whenever possible, add an extra layer of information security by enabling MFA. This requires you to provide a second form of verification, such as a code sent to your phone, in addition to your password, making it much harder for attackers to gain access to your account.
Avoid password reuse: One of the most dangerous habits is reusing the same password for multiple accounts. If one site gets breached, attackers can try the compromised password on other platforms, leading to further security breaches.
Password Managers
If remembering all your unique passwords or having to access them each time you need them becomes too cumbersome, you can try using a password manager to simplify the process. A password manager is a tool that helps you store, manage, and generate strong passwords for your online accounts. You only need to remember one strong "master" password, then the password manager automatically fills in login credentials when needed.
Here’s why using a password manager is helpful:
Strong, unique passwords: Password managers can generate complex passwords that are virtually impossible to guess or crack. You can avoid reusing passwords across different accounts, which is a common practice that increases the risk of widespread breaches.
Ease of use: With a password manager, you don’t have to worry about forgetting your passwords or writing them down in insecure places. The tool securely stores them, reducing the chance of being hacked due to weak password practices.
Encryption and security: Most reputable password managers use strong encryption algorithms to protect your stored passwords, ensuring that even if your device is compromised, your credentials remain secure.
Numerous reliable password managers are available, such as LastPass, Dashlane, 1Password, and Bitwarden. Features offered by such companies may include multifactor authentication (MFA), secure password sharing, and dark web monitoring to alert you if your information has been compromised.
Learn More About Staying Safe Online
Cybersecurity Awareness Month is the perfect time to evaluate your online security practices. By creating strong passwords or using a password manager you can reduce the risk of falling victim to cyberattacks. In an increasingly connected world, proactive cybersecurity measures like these are essential.
If you have questions about how to protect yourself online or you want to report a cyber issue, visit the Cybersecurity & Infrastructure Security Agency (CISA) website. You can also contact an experienced estate planning attorney near you. They can discuss your specific situation and potential options with you.
For additional reading on cybersecurity and estate planning, check out the following articles:
Estate Planning for Your Digital Legacy
How to Protect Your Deceased Loved Ones From Identity Theft
Digital Assets Raise Estate Planning Questions
AI and Obituaries: Did AI Write This Death Announcement?