- Joined
- Sep 15, 2011
- Messages
- 9,185
- Points
- 83
Losing your personal particulars to hackers can lead to financial losses, heartaches, loss of reputation - and sometimes friends, too.
It starts out so innocently.
A simple vote request by an acquaintance for a competition on Facebook; one click and law student Sharlyn J. discovers she has been hacked and locked out of all her social media accounts emails, Facebook, Twitter, Skype and MSN Messenger.
"I clicked on the link and a new window popped up. It looked exactly like Facebook - the colour and the fonts - but I didn't double check the URL. That was my mistake.
"The site required me to type in my email address and password. I was a little reluctant at first but the girl kept pleading for me to vote for her so in the end, I did. Right after that, I knew something was wrong. I got locked out of all my accounts," says Sharlyn, 19, of the incident last May.
If that wasn't bad enough, within the hour, she received a text message that said "Hi Sharlyn. Your full name is , your IC number is , your IP address is , you are a student at college etc." The hacker demanded money in exchange for getting her accounts back.
"He/she even said I'm not asking for much, just RM300 (S$122). You can report to the police, but there's no point. I can't be tracked.'
"That person had all my personal particulars. I was really freaked out. I had just started college and was living on my own. What if he had my home address as well?"
Failing to get a response from Sharlyn, the hacker then sent another text message, offering her a discount of RM150.
"I called my mum and told her what happened. I was really scared but I ignored him. I lodged a police report and opened new accounts the next day to tell all my friends to delete the old ones," she says.
However, even weeks on, the hacker was still assuming her identity and chatting with her friends - as she found out later. She never got any of her accounts back.
In other instances, the identity thief doesn't come to you for money. He goes to your friends, as local film producer Wendy Wong discovered.
Early last month, Wong sent her notebook for servicing.
After getting her notebook back two weeks later, her problems started. When she logged into her email account, there was a prompt saying that the account was in use.
She didn't think much of it, but then came phone calls asking if she was all right and if she was stranded in Spain.
Her email account had been hacked.
Assuming her identity, the hacker emailed all her contacts to tell them she had lost her wallet and asked them to send money so she could settle her hotel bill in Spain.
The hacker asked her contacts to send her RM10,929 (2850) via Western Union to an address in Madrid.
"I was in Kuala Lumpur all the while. Good thing some of my friends called me to check before sending money over. I had friends who were already planning to transfer the money," Wong says, adding that she was alerted of the situation by an mStar journalist who had called her to ask if she was indeed stranded in Spain.
Several attempts to change her password failed as the hacker made repeated assaults on her account.
Wong has since lodged a police report and alerted the customer service of her email account provider.
"This has affected my reputation. Those who know me well would know I would never go around asking people for money. But what about those I have just met, or are just starting a business partnership with? What would they think of me?"
For that reason, Wong held a press conference early this month to clear her name and to alert all her contacts of her predicament.
"It's not so easy for me to just get another email address as that's where my contacts reach me. But it looks like I don't really have much choice now," she laments.
Symantec Malaysia systems engineering director Nigel Tan says that when it comes to identity theft, more often than not, it's an opportunistic crime, and it's a two-step process.
"Someone steals your personal information, then uses that information to impersonate you to commit fraud. It's important to understand this two-step approach, because your defences also must work on both levels," says Tan, who is Symantec's principal consultant for Asia South.
According to the Symantec Internet Security Threat Report for the year 2011, a total of 232 million identities were breached worldwide, and of that, 80.5% were by hackers.
In 2011, the Malaysian Communications and Multimedia Commission (MCMC) recorded a total of 199 hacking complaints, and six identity theft complaints. For this year up till Aug 9, MCMC recorded 141 hacking complaints, with no identity thefts as yet.
It starts out so innocently.
A simple vote request by an acquaintance for a competition on Facebook; one click and law student Sharlyn J. discovers she has been hacked and locked out of all her social media accounts emails, Facebook, Twitter, Skype and MSN Messenger.
"I clicked on the link and a new window popped up. It looked exactly like Facebook - the colour and the fonts - but I didn't double check the URL. That was my mistake.
"The site required me to type in my email address and password. I was a little reluctant at first but the girl kept pleading for me to vote for her so in the end, I did. Right after that, I knew something was wrong. I got locked out of all my accounts," says Sharlyn, 19, of the incident last May.
If that wasn't bad enough, within the hour, she received a text message that said "Hi Sharlyn. Your full name is , your IC number is , your IP address is , you are a student at college etc." The hacker demanded money in exchange for getting her accounts back.
"He/she even said I'm not asking for much, just RM300 (S$122). You can report to the police, but there's no point. I can't be tracked.'
"That person had all my personal particulars. I was really freaked out. I had just started college and was living on my own. What if he had my home address as well?"
Failing to get a response from Sharlyn, the hacker then sent another text message, offering her a discount of RM150.
"I called my mum and told her what happened. I was really scared but I ignored him. I lodged a police report and opened new accounts the next day to tell all my friends to delete the old ones," she says.
However, even weeks on, the hacker was still assuming her identity and chatting with her friends - as she found out later. She never got any of her accounts back.
In other instances, the identity thief doesn't come to you for money. He goes to your friends, as local film producer Wendy Wong discovered.
Early last month, Wong sent her notebook for servicing.
After getting her notebook back two weeks later, her problems started. When she logged into her email account, there was a prompt saying that the account was in use.
She didn't think much of it, but then came phone calls asking if she was all right and if she was stranded in Spain.
Her email account had been hacked.
Assuming her identity, the hacker emailed all her contacts to tell them she had lost her wallet and asked them to send money so she could settle her hotel bill in Spain.
The hacker asked her contacts to send her RM10,929 (2850) via Western Union to an address in Madrid.
"I was in Kuala Lumpur all the while. Good thing some of my friends called me to check before sending money over. I had friends who were already planning to transfer the money," Wong says, adding that she was alerted of the situation by an mStar journalist who had called her to ask if she was indeed stranded in Spain.
Several attempts to change her password failed as the hacker made repeated assaults on her account.
Wong has since lodged a police report and alerted the customer service of her email account provider.
"This has affected my reputation. Those who know me well would know I would never go around asking people for money. But what about those I have just met, or are just starting a business partnership with? What would they think of me?"
For that reason, Wong held a press conference early this month to clear her name and to alert all her contacts of her predicament.
"It's not so easy for me to just get another email address as that's where my contacts reach me. But it looks like I don't really have much choice now," she laments.
Symantec Malaysia systems engineering director Nigel Tan says that when it comes to identity theft, more often than not, it's an opportunistic crime, and it's a two-step process.
"Someone steals your personal information, then uses that information to impersonate you to commit fraud. It's important to understand this two-step approach, because your defences also must work on both levels," says Tan, who is Symantec's principal consultant for Asia South.
According to the Symantec Internet Security Threat Report for the year 2011, a total of 232 million identities were breached worldwide, and of that, 80.5% were by hackers.
In 2011, the Malaysian Communications and Multimedia Commission (MCMC) recorded a total of 199 hacking complaints, and six identity theft complaints. For this year up till Aug 9, MCMC recorded 141 hacking complaints, with no identity thefts as yet.
