What, if anything, do I need to do in light of the massive SolarWinds compromise?
This question was answered on December 31, 2020. Much of the information contained herein may have changed since posting.
The details from one of the biggest hacks in history continue to come out, but we may never know just how much information was compromised.
The hackers used what is known as a ‘supply chain attack’ on a tool used by tens of thousands of large companies and many government agencies (https://bit.ly/3oh9eaU), which potentially provided some form of access to them all.
What Should You Do?
As it pertains to the SolarWinds incident, there’s really nothing you can do directly since the compromise is widespread and had nothing to do with your computers or other devices under your control.
The biggest threat to you will likely be future attempts to target you based on the personal data that has been acquired from the hack.
The good news is that all of the existing cybersecurity advice designed to provide layers of protection still apply which I’ll call my 2021 Cybersecurity Checklist.
#1 – Get a Password Manager
Passwords continue to be one of the weakest links in the security chain especially when they are too short and used on multiple accounts.
The only way to effectively use long complicated passwords for each of your online accounts is through a password manager such as LastPass (https://bit.ly/3n5Y73), RoboForm (https://bit.ly/2LbMVVu) or for technical users, KeePass (https://bit.ly/3hB6DX8).
#2 – Two-Factor Authentication
No matter how well you manage your passwords, if the website you’re using it on gets breached, the bad guys will have it and potentially try to use it without you knowing it.
The only way to keep them from using your password and simultaneously alert you to the fact that someone has acquired your password is by turning on Two-Factor Authentication on every important account you use: (https://bit.ly/3aXBnQx)
#3 – Update Your Router
One of the biggest targets in your home or business is the router, which is connected to every device on your network. If the bad guys can gain access to your router, they can potentially compromise any or all of your devices.
There are two major updates you need to make: The administrator’s password and the firmware, which is the software that controls the hardware.
If your router still has the factory default administrator’s password, it’s known by every hacker on the planet, so change it. The firmware update is how security updates are added to your router.
#4 – Trust Nothing
Spear Phishing scams are still one of the most efficient ways to start any ‘hack’, so treat every email or text message you get as ‘guilty, until proven innocent’.
#5 – Backup, Backup, Backup
Ransomware attacks are expected to become more sophisticated and prevalent and the only way to avoid paying to get your data back is from a secure backup. Online backups are the best protection as they aren’t accessible like a local backup would be.
#6 – Purge Info From Social Media
Review all your social media accounts for personal information such as phone numbers, your home address, date of birth, mother’s maiden name, etc. and purge it.
#7 – Review and Freeze Accounts
To reduce account and credit fraud, review your online accounts regularly and if have no plans to apply for credit, freeze your credit files.
About the author
Posted by Ken Colburn of Data Doctors on December 31, 2020