croom new

NuTech Services Blog

Even Amazon Can Be Hacked

Even Amazon Can Be Hacked

In 2018, Amazon was struck by a considerable attack, with hackers taking funds from approximately 100 seller accounts, according to a Bloomberg report. Between May and October 2018, Amazon sellers were struck approximately 100 times, draining funds from the seller control platform to augment their own funds. According to the investigation, the first fraudulent transaction took place on May 16, 2018, with an undisclosed amount being stolen. The hackers utilized phishing attacks in order to scam their targets.

“Unknown Hack”

On May 8, 2019, almost a year to the day after the first transaction was made, an Amazon spokesperson claimed that the company had completed investigating the compromised accounts, and had been the victim of an “extensive” fraud. The extent of the fraud was large enough where two banking companies, Barclays and Prepay Technologies (who is a partial subsidiary of Mastercard) are caught up in the crime.

Ultimately, Amazon neglected to disclose the true scope of the hack, but a report by Bloomberg indicated that over one billion dollars were dispersed to merchants in 2018 via Amazon Capital Services U.K. While there is currently no figure provided by the company, if large portions of that money was subverted, it could rank as one of the largest hacks in the history of online commerce, and certainly the biggest fraud that has involved Amazon. 

Amazon, which has a business model built to be largely automated, has done a remarkable job of keeping personally identifiable information from being hacked over the years, but in today’s threat-persistent culture, even the most secure companies can have situations happen to them that jeopardize their ability to complete financial and information transactions, regardless of how much they invest in cybersecurity.

Phishing Attacks

Just because this article mentions a major fraud involving the world’s largest online retailer in no way means that hackers have moved on from trying to hack small businesses. Small businesses face the majority of hacking attacks, mainly because they have the least amount of security to thwart. In fact, if Amazon can fall victim to phishing attacks, it’s not a stretch to believe that your company is susceptible. With millions of phishing messages sent every day, many of which target small businesses, having a strategy to educate your staff is extremely important.

The best way to go about doing that is to be proactive. Getting your staff to understand that they are on the front lines of a never-ending cyberwar and what they need to learn in order to keep themselves, and your organization free from the serious risks that come from falling victim of phishing attacks. Some things you can prioritize:

  • Annual education and training - Have a comprehensive plan in place to educate new and current staff that is updated and required annually.
  • Having strong passwords - Since phishing is a form of social engineering, the hackers on the other end of the phishing attack are simply looking for access. Having strong passwords will keep them out much longer than weak ones. 
  • Avoid shadow IT - Make it clear that all software has to pass through IT first, before it is downloaded onto a workstation. It may seem inefficient at first, but the company will be better off vetting a software solution before it gains access to your organization’s network.
  • Provide cloud storage - When people are constantly on the move and have a lot of responsibilities, they will often upload their work into their personal cloud-based file storage. This can be risky behavior, even if the employee’s motives are solid. Keep your company’s data hosted on its own infrastructure.

With these four tips you can go a long way toward protecting your business, and your staff, from the detrimental characteristics of a phishing attack.

If you need help with your organization’s cybersecurity, or if you simply want some help outlining a strategy to use, contact the IT professionals at NuTech Services today at 810-230-9455.

Tip of the Week: Using Digital Signage
Windows 7 and Windows Server 2008 R2 is Finally Lo...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Friday, 23 August 2019

Captcha Image

Tag Cloud

Tip of the Week Security Technology Best Practices Privacy Cloud Business Computing Hackers Hosted Solutions Google Microsoft Business Malware Email Workplace Tips Efficiency User Tips Innovation Internet Software Data Productivity Backup Mobile Devices Network Security Miscellaneous Computer Hardware Smartphones Windows 10 Productivity Android Browser Smartphone communications Business Continuity VoIP Small Business IT Services Windows Business Management Tech Term Communication Network Disaster Recovery Chrome Office Server Cloud Computing Upgrade Ransomware Data Backup Managed IT Services Gadgets Collaboration Holiday Cybercrime Social Media Windows 10 IT Support Quick Tips Save Money Microsoft Office Alert Outsourced IT Automation Data Recovery Mobile Device Computers Users Router Telephone Systems Virtualization Artificial Intelligence Internet of Things Managed IT Services Office 365 Employer-Employee Relationship Spam Cybersecurity Law Enforcement Operating System Social Engineering Health Hacking Phishing Facebook App Passwords Applications How To Wi-Fi Mobile Device Management Information Office Tips Remote Computing Money Mobility Password Bandwidth Marketing Entertainment Settings Networking BYOD Saving Money Big Data Private Cloud BDR Two-factor Authentication Encryption Bring Your Own Device Mobile Computing Google Drive Mouse Remote Monitoring Application Managed Service Provider Word Work/Life Balance Government Gmail Website USB Recovery Connectivity Data Security Human Resources Data Management Data Storage Wireless Safety HaaS Windows 7 Apps Sports Voice over Internet Protocol Flexibility History VPN Training Cleaning Keyboard WiFi Meetings IT Support Virtual Reality Managed Service Education Staff Vulnerability Lithium-ion battery Data Breach Paperless Office Data Protection Display Scam The Internet of Things Best Practice Managed IT Infrastructure Risk Management Telephony Excel Machine Learning Wearable Technology Data storage Computer Care Internet Exlporer Google Docs Content Management Help Desk Access Control Electronic Medical Records Worker Printer Botnet Biometrics Augmented Reality Processor Hacker Business Intelligence Unified Threat Management Environment Physical Security Fraud Samsung Robot Blockchain Software as a Service Cryptocurrency Save Time Spam Blocking Retail IT Management Servers Firewall Humor Battery Value IT Plan Apple Black Market Hiring/Firing Avoiding Downtime Public Cloud Legal Digital Signage Automobile DDoS Redundancy YouTube Patch Management Unsupported Software eWaste Virtual Assistant Vendor Management IT solutions Social Net Neutrality Computer Accessories Bluetooth End of Support OneNote Fax Server Comparison User Error Downtime Identity Theft Telephone System Charger Budget Update PDF CES Managing Stress FCC Password Management Video Games Inventory Proactive IT Cameras Internet exploMicrosoft Content Virtual Machine IBM Cast Touchpad Security Cameras Transportation Emails Windows Server 2008 Entrepreneur Evernote File Sharing Default App Windows Server 2008 R2 Wireless Technology Specifications Techology Digital Signature IT Consultant Analyitcs Credit Cards How to 5G Audit Analytics Social Networking Wireless Internet Information Technology Troubleshooting Tablets Title II NIST Scalability ISP Shortcut Devices Advertising Password Manager Warranty Audiobook Hypervisor Supercomputer Accountants Smartwatch Benefits Streaming Media Skype iPhone Wireless Charging Assessment Root Cause Analysis People Chromecast Leadership HBO Running Cable Monitor Consultant OLED IT Infrastructure Computer Fan Wire Books Hard Drives Online Instant Messaging Authentication Cryptomining Rootkit Uninterrupted Power Supply Printer Server Travel Thought Leadership Business Mangement Administrator Politics Saving Time SharePoint Millennials Employee User Start Menu Files Cortana Remote Worker Worker Commute Hard Drive Television Mobile Office Windows Media Player Science Outlook Reputation Best Available Flash Amazon Manufacturing Investment FENG Customer Relationship Management Multi-Factor Security Smart Office HIPAA Shortcuts Emergency Memory Telecommuting Safe Mode Nanotechnology Database Windows 10s Recycling Microchip Procurement Current Events Windows 8 Workforce HVAC Practices Smart Technology Netflix Notifications Virus Tools Google Apps Wiring Personal Information Public Computer Data loss Going Green webinar Frequently Asked Questions Customer Relocation Amazon Web Services Cabling ROI Loyalty PowerPoint Customer Service Trending Document Management Vendor Knowledge Remote Work Business Technology Tech Support Addiction Hybrid Cloud Criminal Search Engine Experience WIndows 7 Tablet Enterprise Content Management Hosted Computing Google Search Two Factor Authentication Employer Employee Relationship Maintenance Programming Smart Tech Workers Camera Financial Screen Mirroring Laptop Conferencing Tip of the week Distributed Denial of Service Bloatware Sync Online Shopping MSP Computing Infrastructure Cables GDPR SaaS NarrowBand Network Congestion Software Tips Search Biometric Security Solid State Drive Shadow IT Cache Bing Music Printers CrashOverride Compliance Company Culture Webinar Regulation Phone System IT solutions Twitter

Mobile? Grab this Article!

Qr Code

Upcoming Events

No events

Recent Comments

No comments yet.

Latest Blog Entry

Small business owners have a lot on their minds and a ton of responsibilities that the average employee doesn’t have. Small businesses often force business owners into taking on various roles that may or may not fit their specific skill set, including CIO or CTO. Of course, ...

Latest News

NuTech Services launches new website!

NuTech Services is proud to announce the launch of our new website at www.nutechology.com. The goal of the new website is to make it easier for our existing clients to submit and manage support requests, and provide more information about our services for prospective clients.

Read more ...

Account Login