With so many data breaches lately, receiving yet another email about yet another breach no longer feels unusual. But before you click on any links, take a closer look at the message — it might be a phishing attempt.
Yep, the message you received could be a fake, designed to trick you into sharing sensitive info like your login credentials or personal details. These kinds of grabs at your data aren’t unusual, and the approaches can vary. Some may directly impersonate companies while others may pose as security software (e.g., Norton, Malwarebytes, etc.), which periodically send legitimate emails to subscribers about the latest online attacks.
Fortunately, you can avoid these attacks by sidestepping the messages. Don’t click on any links — instead, open a new browser tab and search for the name of the company plus “data breach” or “hacked.” If the breach is real, it’ll be in the news and/or announced on their official website. You’ll also find legitimate info on how to take steps to secure your account.
Foundry
In addition, follow these tips to guard against phishing attacks:
- Make sure antivirus is active on your PC. Windows Security is on by default, but excellent third-party antivirus software exists if you want more features. While not 100 percent foolproof, a good app will help catch and block suspicious URLs in case of accidental clicks.
- Keep your browser software up to date. Modern browsers like Chrome and Firefox will block known malicious links.
- Phishing sites often try to steal login info, so using passkeys, which can only be used with the original site they’re created for. This can prevent your credentials from ever falling into a stranger’s hands.
- Virtual credit card numbers can help keep your financial info away from fraudsters, as some can be kept to a single merchant for use. They’re also easy to cancel. Some can even be limited to a certain dollar amount to minimize damage if they’re ever stolen.
If you’re burned out on data breaches (much less online security), you’re not alone. It’s a drag. Thankfully, most software maintenance is automated now, and once you set up passkeys, you shouldn’t need to change or rotate them like passwords. The hardest work is to train yourself to not trust links, but the habit sticks faster than you might think.
Further reading: These simple actions keep you safer online
