fryup wrote: » is it only littlewoods customers affected?
McGaggs wrote: » Nobody has an account with fastway, no passwords were released. The worry here is that addresses and phone numbers are now associated with names and emails, and that could allow someone to convince Amazon for example to allow a password reset and take over the account with stored card details in it. The Facebook notification is clearly someone who doesn't have the password, but is trying to get in. Could this attack be using an old password from an old back that's associated with an email address, if a phone number and address are used as security questions....
Niner leprauchan wrote: » That would just mean you got a password reset mail or message to your email and phone of which the hackers have no access
fryup wrote: » so what are we saying here - are our credit card details at risk??
odyssey06 wrote: » No - name, address, email address and mobile phone number.
L1011 wrote: » The TKMaxx one affected US data. Right now, having name + address + mobile number of people who are using a courier firm is a gold mine for people sending fake "due to Brexit you need to pay customs at this website" scam texts. This will be used, and people will fall for it as the messages will be far more custom than before. "Mary Murphy, we have a package for delivery to you at 123 Scam Street". Phone books haven't had mobile numbers since about 1993.
McGaggs wrote: » For most things, yes, but I've read a couple of articles about how people have had Amazon accounts taken over by 'hackers' phoning up or using we chat. About 10 years ago, I was having a conversation about this type of thing, and one of the lads said there was no way someone could get access to your accounts. I told him I would, and I managed to post something daft from his Facebook account. I had to get his Gmail password reset in order to get into his Facebook. All I had was name, address and dob.
L1011 wrote: » The hit rate from 1m random numbers is going to be far, far less than the hit rate from highly personalised scams. This data is hugely valuable in the wrong hands, and you are showing a complete lack of knowledge of why in trying to claim it isn't. They have up to date, presumably very accurate info that can be used to craft extremely convincing scams full of info that people assume isn't easily available - and they have hundreds of thousands of those records. What scammers aren't going to do is try construct equivalent info from a hugely time intensive (one minute times four hundred thousand records) trawl of multiple sources to do the same; so your comparison is pointless.
Niner leprauchan wrote: » But they don't. It's mostly public information that's already available. I'm not saying it's of no value at all but it's low grade and mostly of use in indirect scams.
L1011 wrote: » Its not information that's available in one place, effectively pre-verified and up-to-date and perfect for crafting extremely convincing scams that bypass many of the standard things people check for - does it address me by name being a huge one drilled in by banks, Paypal and so on. If you (meaning posters in general) don't understand how valuable this is for scammers, I really, really hope you have no control over other peoples data in any way, shape or form.
L1011 wrote: » Voting register is only available for inspection in person in print form except for the edited register of the few people who opt-in for spam post. That is tiny these days. The labour intensivity of that is off the scale. This is likely to be used for basically spear-phishing and it will catch out a lot of people who think they have the cop-on and would easily avoid a scattergun scam.
Darc19 wrote: » This is scaremongering BS. You need to be called out for this. It's something a rag like the daily muck would come out with. This is very low value information and unlikely to be much value to anyone.
thewolfisloose wrote: » Data breaches are common enough. There are online platforms you can run your email address through to see if they've been involved in a data breach such as ArkOwl.
Strawberry Milkshake wrote: » Got email from fastway and homestore and more earlier. How do ArkOwl know whether my email has been involved in a data breach? Isn’t someone like fastway giving ArkOwl that info yet another breach of my data? I’m confused.
whiterebel wrote: » As far as I'm aware companies like that run a comparison of your email address (which you give them) against the lists of emails that have been exposed in breaches.
whiterebel wrote: » Mod - Can everyone please take it down a notch. There has been a breach, and information is out there. We now need to be be careful of any suspicious emails and texts.
Niner leprauchan wrote: » No it's not. I can look people up at vote.ie and irishfamilyhistorycentre.com Phishing is not high quality, it's high quantity. If you continue to disagree, produce your evidence please.
odyssey06 wrote: » Where is the list on vote.ie of names and addresses of voters?
VG31 wrote: » You can check if someone is on the voter register but you have to know their name and address.