My alarm buzzed at 8 am. After hitting the sleep button one too many times, I swung my feet out of bed to make my way into the kitchen and begin my morning routine. Every day starts with a cup of delicious hot coffee. As the kettle heated, I sat at the table and picked up my phone. I began to check my social media and then went through my emails. At that point, I saw that I had a bill due for our heating. I tried to log in to my banking account but forgot my password. So, the arduous task began, trying to prove my identity to my bank before breakfast. Once I had the chance to change my password, I was prompted to pick one with several different upper and lowercase letters and special characters. So, in a moment of weakness, I typed in the same password that I use for several apps (this is not advised), and I was notified. “Your new password can not be the same as your old password.” I felt immediate and unbridled rage building inside me just as the kettle began to whistle. At that moment, something interesting happened: my phone suggested a password and had the ability to store it for future use! This is incredible, I thought. I accepted the prompt, and shortly after that, my phone suggested I look at changing old and compromised passwords that my device had been tracking. As I opened the security function, I was flabbergasted. I have 90 security recommendations for changing passwords across websites I have visited. Every one of these recommendations was due to a data breach of some kind. This discovery only raised more questions. Why did these breaches occur? Who has my data? What identifying information about me is on the profiles of these sites? Do they have access to my credit cards? Lastly, how on earth have I signed up for ninety online profiles?
According to the Competition Bureau of Canada, fraud cases in Canada have doubled over the past ten years, from 79,000 in 2012 to 150,000 in 2022 (Competition Bureau of Canada 2024). This means that creating good habits around using online tools is becoming more vital each year. Worldwide, the situation is even more alarming. The World Economic Forum reports that in 2023, online scammers stole nearly 1 trillion dollars from victims worldwide (Wood, 2024). Yes, that was a trillion. This is not just a number but a stark reminder of the personal and financial toll that digital fraud can take. Websites, apps, and services collect massive amounts of data to function effectively. For example, files are stored on a third-party server when signing up for cloud storage. While this service allows access to data from anywhere, it also means that the service provider has access to personal files. These companies often claim to prioritize security, but data can still be vulnerable to hacking, unauthorized access, or leaks. Another issue with online tools is that many services partner with third-party companies, often sharing user data for advertising. When using free services like email providers, cloud storage, or social media platforms, data may be sold or shared with marketers who use it for targeted ads. In other cases, apps may request access to contacts, location, or camera, often without explaining why this data is necessary or how it will be used.
While online tools offer convenience, they also make users vulnerable to cyberattacks. For example, I was eager to use that password manager to alleviate my poor memory. However, if services experience a data breach, (or ninety of them like mine), sensitive information, including passwords, financial details, and personal documents, can be exposed. Unfortunately, even the most secure systems are not immune to hacking, and once data is compromised, it is often difficult to recover or protect one’s privacy.
So, what can we do? The first step is to use a different password for multiple accounts. It seems like common knowledge, but having that password leaked along with identifying information could leave you in financial ruin. If you don’t see me in class, at least you know why. However, Chris Brook from Digital Guardian offers five other significant steps to help protect your data and use online tools safely.
- Limit Permissions:Pay attention to the permissions apps request when installing them. Does a photo editing app need access to your microphone or location? Please be careful about the access you give (Brook, 2024)
- Use Encryption: End-to-end encryption tools ensure the service provider cannot access your data. Prioritize services with strong encryption protocols to protect your information (Brook, 2024).
- Regularly update passwords: If using a password manager, ensure that the master password is regularly updated and that two-factor authentication is enabled (Brook, 2024).
- Monitor Your Accounts: Monitor accounts for suspicious activity (Brook, 2024). Many tools alert if personal data has been breached or accessed unexpectedly (Brook, 2024).
- Delete old accounts: Lastly, delete accounts when they are no longer helpful (Brook, 2024). You probably do not need that old Neopets account or an account to make a one-time purchase on GoFundMe.
With time being one’s most valuable asset in the modern world, convenience is king. However, it is essential to remember that the ease of use of these tools often comes at the expense of privacy. Becoming more conscious of what information you give companies access to and taking proactive steps to protect your data are essential for your digital health and safety. Becoming informed about the implications of data breaches and how vulnerable you are online will help you make better decisions about the tools you rely on in your daily life. If you will excuse me, I will be spending the rest of my life changing ninety passwords.
Sources
Brook, C. (2024, August 22). 101 Data Protection Tips: How to Protect Your Data. DATAINSIDER Digital Guardian’s Blog. https://www.digitalguardian.com/blog/101-data-protection-tips-how-keep-your-passwords-financial-personal-information-online-safe
Competition Bureau Canada (2024, March 4). The rise of AI: Fraud in the digital age. Government of Canada. https://www.canada.ca/en/competition-bureau/news/2024/03/the-rise-of-ai-fraud-in-the-digital-age.html
Wood, J. (n.d.). Cybersecurity. Retrieved October 1, 2024, from https://www.weforum.org/agenda/2024/04/interpol-financial-fraud-scams-cybercrime/