As more of our lives move online, the risk of our personal data being stolen or misused is increasing.
随着我们的生活越来越多地转移到网上,我们的个人数据被窃取或滥用的风险正在增加。
Personal data includes email addresses, phone numbers, birthdates, and even passwords. And large data breaches are happening more often.
个人数据包括电子邮件地址、电话号码、生日,甚至密码。此外,大规模数据泄露事件也越来越频繁。
In breaches, online criminals can use stolen data to target people with leading messages to get important information. Or they can take out loans and credit cards in their name.
在违规行为中,网络犯罪分子可以利用窃取的数据来瞄准那些有重要信息的人,以获取重要信息。或者他们可以以自己的名义申请贷款和信用卡。
Here are some ways to protect yourself:
以下是一些保护自己的方法:
Pay attention
注意
Oren Arar is vice president of buyer privacy at online security company Malwarebytes. He said in the United States, there is no federal law enforcing companies or organizations to inform individuals of a data breach.
Oren Arar是在线安全公司Malwarebytes负责买家隐私的副总裁。他说,在美国,没有联邦法律强制公司或组织通知个人数据泄露。
But he said it is common practice for them to do so and they often provide identity protection services.
但他说,他们这样做是常见的做法,他们经常提供身份保护服务。
The situation is better in the European Union. It requires companies and organizations to tell individuals of some kinds of breaches.
欧盟的情况要好一些。它要求公司和组织告知个人某些类型的违规行为。
Even after a breach has been made public, cyber security experts say people need to pay attention.
网络安全专家表示,即使在漏洞被公开之后,人们也需要注意。
Look out for emails or phone calls that say they are from the hacked organization or someone offering help. Contact the organization to see if they can confirm it.
注意那些声称是被黑组织或提供帮助的人发来的电子邮件或电话。联系该组织,看看他们是否能确认。
Use official links, do not use any links or contact details in any messages you have been sent.
使用官方链接,不要在您已发送的任何消息中使用任何链接或联系方式。
The Federal Trade Commission's website, identitytheft.gov, can tell you of identity theft victims. And it provides step-by-step advice with how to deal with different situations.
联邦贸易委员会的网站,identitytheft.gov,可以告诉你身份盗窃的受害者。它提供了如何处理不同情况的一步一步的建议。
Change your password
更改密码
If your data has been breached, the first thing you should do is change your password for the account involved.
如果你的数据被泄露了,你应该做的第一件事就是更改相关账户的密码。
Use a strong, long password including letters, numbers and symbols. And make sure to add a second level of security. That may include having an email or text sent to you. It could also mean using a device called a USB authenticator.
使用强而长的密码,包括字母、数字和符号。一定要加第二层安全措施。这可能包括给你发一封电子邮件或短信。这也可能意味着使用一种被称为USB身份验证器的设备。
And if you have been using the same, or similar, password for different online accounts, make changes to it for each site. Hackers may take your password from one service and try it on your other accounts.
如果你在不同的在线账户上使用了相同或相似的密码,那就在每个网站上修改一下。黑客可能会从一个服务中获取你的密码,然后在你的其他账户上尝试。
Arar said, "Just because your info shows up in a breach doesn't mean someone's stolen your identity or money. But it does mean you're at risk." He said it is wise to monitor your accounts, change any leaked passwords, set up a second security system, and have a separate email address for less important sign-ups.
Arar说:“仅仅因为你的信息出现在漏洞中并不意味着有人窃取了你的身份或金钱。但这确实意味着你有风险。”他说,明智的做法是监控你的账户,更改任何泄露的密码,设置第二个安全系统,并为不太重要的注册使用单独的电子邮件地址。
Keep monitoring
保持监控
It can be hard to follow all the different data breaches. But there are online services that you can look at to see if your email has been involved in a data breach.
很难追踪所有不同的数据泄露事件。但你可以通过在线服务查看你的电子邮件是否与数据泄露有关。
Darren Guccione is CEO of Keeper Security. It makes password protection programming and offers a tool called BreachWatch. It keeps watch on the dark web to see if your personal information shows up there.
达伦·古奇奥尼是Keeper Security公司的首席执行官。该公司制作密码保护程序,并提供名为breakwatch的工具。它会监视暗网,看看你的个人信息是否出现在那里。
He said, "When public data breaches occur, cybercriminals gather as much data as possible so they can sell it on the dark web."
他说:“当公共数据泄露发生时,网络犯罪分子会收集尽可能多的数据,然后在暗网上出售。”
Tell your bank and credit agencies
告诉你的银行和信贷机构
If your credit card payment numbers are stolen, inform your bank or credit card company. Explain that your card is at risk of fraud and ask them to warn you of any suspicious activity.
如果您的信用卡支付号码被盗,请通知您的银行或信用卡公司。向他们解释你的信用卡有被诈骗的风险,并要求他们警告你任何可疑的活动。
They will likely give you a new card. Additionally, some banks and credit cards permit you to lock your account online.
他们可能会给你一张新卡。此外,一些银行和信用卡允许你在线锁定账户。
You can also inform credit agencies. The three main companies are Equifax, Experian and TransUnion. They can freeze your credit. That makes it hard to see your credit report and open a new account. Or they will ask lenders to contact you before lending money.
你也可以通知信用机构。三家主要公司是Equifax, Experian和TransUnion。他们可以冻结你的信用。这使得你很难看到你的信用报告和开一个新账户。或者他们会要求贷款人在借钱之前与你联系。
Take extra care
格外小心
Online security experts warn that breaches involving a telephone company leave buyers at risk of having their phone numbers stolen. Thieves can use a stolen number to enter accounts that use that phone number as a second security.
网络安全专家警告说,涉及电话公司的违规行为会让买家面临电话号码被盗的风险。窃贼可以用偷来的电话号码进入使用该电话号码作为第二安全保护的账户。
To reduce that risk, telephone company AT&T advises creating a password that is needed to make large account changes. Also, delete emails containing personal information from your email account. That will help block possible damage by someone who gains entry to your email account.
为了降低这种风险,电话公司AT&T建议创建一个密码,以便在进行大量账户更改时使用。此外,从你的电子邮件帐户中删除包含个人信息的邮件。这将有助于阻止那些进入你的电子邮件帐户的人可能造成的损害。
随着我们的生活越来越多地转移到网上,我们的个人数据被窃取或滥用的风险正在增加。
Personal data includes email addresses, phone numbers, birthdates, and even passwords. And large data breaches are happening more often.
个人数据包括电子邮件地址、电话号码、生日,甚至密码。此外,大规模数据泄露事件也越来越频繁。
In breaches, online criminals can use stolen data to target people with leading messages to get important information. Or they can take out loans and credit cards in their name.
在违规行为中,网络犯罪分子可以利用窃取的数据来瞄准那些有重要信息的人,以获取重要信息。或者他们可以以自己的名义申请贷款和信用卡。
Here are some ways to protect yourself:
以下是一些保护自己的方法:
Pay attention
注意
Oren Arar is vice president of buyer privacy at online security company Malwarebytes. He said in the United States, there is no federal law enforcing companies or organizations to inform individuals of a data breach.
Oren Arar是在线安全公司Malwarebytes负责买家隐私的副总裁。他说,在美国,没有联邦法律强制公司或组织通知个人数据泄露。
But he said it is common practice for them to do so and they often provide identity protection services.
但他说,他们这样做是常见的做法,他们经常提供身份保护服务。
The situation is better in the European Union. It requires companies and organizations to tell individuals of some kinds of breaches.
欧盟的情况要好一些。它要求公司和组织告知个人某些类型的违规行为。
Even after a breach has been made public, cyber security experts say people need to pay attention.
网络安全专家表示,即使在漏洞被公开之后,人们也需要注意。
Look out for emails or phone calls that say they are from the hacked organization or someone offering help. Contact the organization to see if they can confirm it.
注意那些声称是被黑组织或提供帮助的人发来的电子邮件或电话。联系该组织,看看他们是否能确认。
Use official links, do not use any links or contact details in any messages you have been sent.
使用官方链接,不要在您已发送的任何消息中使用任何链接或联系方式。
The Federal Trade Commission's website, identitytheft.gov, can tell you of identity theft victims. And it provides step-by-step advice with how to deal with different situations.
联邦贸易委员会的网站,identitytheft.gov,可以告诉你身份盗窃的受害者。它提供了如何处理不同情况的一步一步的建议。
Change your password
更改密码
If your data has been breached, the first thing you should do is change your password for the account involved.
如果你的数据被泄露了,你应该做的第一件事就是更改相关账户的密码。
Use a strong, long password including letters, numbers and symbols. And make sure to add a second level of security. That may include having an email or text sent to you. It could also mean using a device called a USB authenticator.
使用强而长的密码,包括字母、数字和符号。一定要加第二层安全措施。这可能包括给你发一封电子邮件或短信。这也可能意味着使用一种被称为USB身份验证器的设备。
And if you have been using the same, or similar, password for different online accounts, make changes to it for each site. Hackers may take your password from one service and try it on your other accounts.
如果你在不同的在线账户上使用了相同或相似的密码,那就在每个网站上修改一下。黑客可能会从一个服务中获取你的密码,然后在你的其他账户上尝试。
Arar said, "Just because your info shows up in a breach doesn't mean someone's stolen your identity or money. But it does mean you're at risk." He said it is wise to monitor your accounts, change any leaked passwords, set up a second security system, and have a separate email address for less important sign-ups.
Arar说:“仅仅因为你的信息出现在漏洞中并不意味着有人窃取了你的身份或金钱。但这确实意味着你有风险。”他说,明智的做法是监控你的账户,更改任何泄露的密码,设置第二个安全系统,并为不太重要的注册使用单独的电子邮件地址。
Keep monitoring
保持监控
It can be hard to follow all the different data breaches. But there are online services that you can look at to see if your email has been involved in a data breach.
很难追踪所有不同的数据泄露事件。但你可以通过在线服务查看你的电子邮件是否与数据泄露有关。
Darren Guccione is CEO of Keeper Security. It makes password protection programming and offers a tool called BreachWatch. It keeps watch on the dark web to see if your personal information shows up there.
达伦·古奇奥尼是Keeper Security公司的首席执行官。该公司制作密码保护程序,并提供名为breakwatch的工具。它会监视暗网,看看你的个人信息是否出现在那里。
He said, "When public data breaches occur, cybercriminals gather as much data as possible so they can sell it on the dark web."
他说:“当公共数据泄露发生时,网络犯罪分子会收集尽可能多的数据,然后在暗网上出售。”
Tell your bank and credit agencies
告诉你的银行和信贷机构
If your credit card payment numbers are stolen, inform your bank or credit card company. Explain that your card is at risk of fraud and ask them to warn you of any suspicious activity.
如果您的信用卡支付号码被盗,请通知您的银行或信用卡公司。向他们解释你的信用卡有被诈骗的风险,并要求他们警告你任何可疑的活动。
They will likely give you a new card. Additionally, some banks and credit cards permit you to lock your account online.
他们可能会给你一张新卡。此外,一些银行和信用卡允许你在线锁定账户。
You can also inform credit agencies. The three main companies are Equifax, Experian and TransUnion. They can freeze your credit. That makes it hard to see your credit report and open a new account. Or they will ask lenders to contact you before lending money.
你也可以通知信用机构。三家主要公司是Equifax, Experian和TransUnion。他们可以冻结你的信用。这使得你很难看到你的信用报告和开一个新账户。或者他们会要求贷款人在借钱之前与你联系。
Take extra care
格外小心
Online security experts warn that breaches involving a telephone company leave buyers at risk of having their phone numbers stolen. Thieves can use a stolen number to enter accounts that use that phone number as a second security.
网络安全专家警告说,涉及电话公司的违规行为会让买家面临电话号码被盗的风险。窃贼可以用偷来的电话号码进入使用该电话号码作为第二安全保护的账户。
To reduce that risk, telephone company AT&T advises creating a password that is needed to make large account changes. Also, delete emails containing personal information from your email account. That will help block possible damage by someone who gains entry to your email account.
为了降低这种风险,电话公司AT&T建议创建一个密码,以便在进行大量账户更改时使用。此外,从你的电子邮件帐户中删除包含个人信息的邮件。这将有助于阻止那些进入你的电子邮件帐户的人可能造成的损害。
