{"id":67517,"date":"2021-10-14T14:30:24","date_gmt":"2021-10-14T21:30:24","guid":{"rendered":"https:\/\/blog.mozilla.org\/?p=67517"},"modified":"2021-10-18T11:14:22","modified_gmt":"2021-10-18T18:14:22","slug":"hacked-unravelling-a-data-breach","status":"publish","type":"post","link":"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/","title":{"rendered":"Hacked! Unravelling a data breach"},"content":{"rendered":"\n<p><em>This is a story about paying a steep price for a pair of cheap socks.<\/em><\/p>\n\n\n\n<h3 class=\"wp-block-heading\">The first loose thread in June<\/h3>\n\n\n\n<p>One Tuesday morning as I* was having my coffee and toast before kicking off the work day, I got a text from my credit card company alerting me to a suspected fraud charge. Of course I was alarmed and started looking into it right away.&nbsp;<\/p>\n\n\n\n<p>I messaged my husband: <em>Are you getting any fraud charge alerts?<\/em> Nope, just me.&nbsp;<\/p>\n\n\n\n<p>Soon after, I received an email order confirmation (then another and another) for electronic goods I didn\u2019t purchase. The email receipt showed my home billing address, with a different shipping address, which happened to be the location of a hotel in my city. I found it odd and scary that someone local had my credit card number matched to my actual name, home address and email address. I imagined them holed up in a hotel room opening boxes of stolen goods and reselling them on Craigslist. But wouldn\u2019t the thief realize I (and other victims) would get these email messages?&nbsp;<\/p>\n\n\n\n<p>Wait. Was someone using my email account?!&nbsp;<\/p>\n\n\n\n<p>Hoping it wasn\u2019t too late, I sprang into action, quickly changing my email password and verifying that my account wasn\u2019t logged into any unfamiliar devices. Everything seemed okay there. I wondered if it could have been a mashup of data breaches and scrapes that allowed a thief to merge the information into a more complete picture. The thought crossed my mind that a keylogger was installed on my computer.&nbsp;<\/p>\n\n\n\n<p>Meanwhile, my credit card company canceled my cards and set about issuing new ones. What had actually happened didn\u2019t pinpoint me personally \u2014 and here\u2019s what I was able to weave together.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Backstitch to May<\/h3>\n\n\n\n<p>Like most people on Instagram, I love to see friends\u2019 pics and scroll through other fun visual content. I don\u2019t mind ads for movies and shows (hello entertaining videos that fill my playlist) or for clothes and accessories (hello virtual window shopping.) One ad kept reappearing for custom print socks. So cute. I caved and ordered a pair of these socks for my husband for Father\u2019s Day, featuring our kids\u2019 faces. They arrived, as adorable as could be, and we all had a good laugh when he opened them.&nbsp;<\/p>\n\n\n\n<p>Life went on. Then something else happened.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">A tangled knot in July<\/h3>\n\n\n\n<p>Apparently the would-be credit card thief had also used FedEx for shipping, and when my credit card was declined, FedEx reverted to billing the shipper, which was the thief posing as me with my real address.<\/p>\n\n\n\n<p>When I received the first invoice in the mail from FedEx, I called my credit card company who&nbsp; assured me that the charge had been flagged as fraud. The representative advised me to ignore the letter, and that FedEx knew the charge wasn\u2019t mine. But the second letter from FedEx was clear they weren\u2019t giving up on collecting the fee billed to my \u201caccount\u201d even though the real me doesn\u2019t have one.&nbsp;<\/p>\n\n\n\n<p>When I called FedEx and gave the case number listed on the letter, the representative started asking what I felt were increasingly privacy-invading questions (wouldn\u2019t the case number be enough information?), and I was worried this was a phishing expedition. Eventually, after a few more phone calls I was able to get this resolved. I think. No more letters. Fees removed. Still, it was unnerving.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Knitting the threads together in September<\/h3>\n\n\n\n<p>The email subject line caught my attention: <em>Security Incident Notification<\/em>. The e-commerce host for the adorable sock company I ordered from in May had been compromised. They wrote that:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote\"><p><em>The hosting company, by their own admission, forgot to enable one of the most basic security features, and this security oversight allowed our business to be attacked by an unknown 3rd party using a malicious file, allowing them to access some payment information.<\/em> <\/p><p><em>The hosting company\u2019s failure in ensuring traditional security and data-protection measures allowed the unknown 3rd-party to skim the information as it was entered.<\/em><\/p><\/blockquote>\n\n\n\n<p>So it appears the alarms that went off in June were related to a purchase I made in May. I can\u2019t be sure that my data isn\u2019t still out there, but at least my credit card has been replaced. I did check my credit report recently to make sure there wasn\u2019t any suspicious activity.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">The takeaway<\/h3>\n\n\n\n<p>I can only assume that the fraudsters had a huge dump of data, and they figured they could get away with theft from some people who wouldn\u2019t even notice the charges. If the credit card hadn\u2019t flagged the fraud, they might have gone unnoticed by someone who doesn\u2019t review their monthly bill. It\u2019s mildly inconvenient to have credit cards reissued, and it can also create problems with automatic bill-pays and urgent needs. Taking care of the fallout took time and effort.\u00a0I&#8217;m assuming this is over, but maybe it&#8217;s not. <\/p>\n\n\n\n<p class=\"has-text-align-center\">*  *  *  *  *<\/p>\n\n\n\n<p>Truthfully, it could have been much worse. We can\u2019t predict the future, but we can be prepared in case our personal information is ever part of a data breach. Luke Crouch, a cybersecurity expert with Mozilla, recommends people do the following when faced with a data breach:<\/p>\n\n\n\n<ol><li>Lock down your email accounts by updating your passwords and setting up 2-factor authentication.<\/li><li>Get a password manager.<\/li><li>Use <a href=\"https:\/\/monitor.firefox.com\/\">Firefox Monitor<\/a> to see if your email has been part of any other breaches.<\/li><\/ol>\n\n\n\n<p>The bottom line: If you get snagged in a data breach, tie up any loose threads quickly to protect yourself, and stay on top of monitoring your accounts for suspicious activity.<\/p>\n\n\n\n<hr class=\"wp-block-separator\"\/>\n\n\n\n<p>*<em>Ed note: This person\u2019s name has been removed to protect their privacy.<\/em><\/p>\n\n\n\n<p><\/p>\n\n\n\n<p class=\"has-background\" style=\"background-color:#bcb9f6\"><em>At Mozilla, we work towards creating a safe and joyful Internet experience every day. That\u2019s why this year for Cyber Security Awareness month, we\u2019ll be featuring privacy and security experts as they weigh in on personal stories of cybercrime and more. Check back each week in October for a new story and expert advice on how to protect yourself online.<\/em> <em>In the meantime, kick start your own cyber security journey with products designed to keep you safe online including: <\/em><a href=\"https:\/\/www.mozilla.org\/en-US\/products\/vpn\/\"><em>Mozilla VPN<\/em><\/a><em> to<\/em><a href=\"https:\/\/monitor.firefox.com\/\"><em> Firefox Monitor<\/em><\/a><em> and<\/em><a href=\"https:\/\/relay.firefox.com\/\"><em> Firefox Relay<\/em><\/a><em>.<\/em><\/p>\n\n\n\n<p><br><\/p>\n","protected":false},"excerpt":{"rendered":"<p>This is a story about paying a steep price for a pair of cheap socks. The first loose thread in June One Tuesday morning as I* was having my coffee and toast before kicking off the work day, I got a text from my credit card company alerting me to a suspected fraud charge. Of [&hellip;]<\/p>\n","protected":false},"author":144,"featured_media":67542,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[461998,289374,464320],"tags":[464084,4708],"coauthors":[306191],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Hacked! Unravelling a data breach - The Mozilla Blog<\/title>\n<meta name=\"description\" content=\"This is a story about paying a steep price for a pair of cheap socks. Bottom line: If you get snagged in a data breach, tie up any loose threads quickly to protect yourself, and stay on top of monitoring your accounts for suspicious activity.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/\",\"url\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/\",\"name\":\"Hacked! Unravelling a data breach - The Mozilla Blog\",\"isPartOf\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2021\/10\/fx_tips_hacked_cybersecurity_1920x1080.png\",\"datePublished\":\"2021-10-14T21:30:24+00:00\",\"dateModified\":\"2021-10-18T18:14:22+00:00\",\"author\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/33edd7d4d73723140487082573041c83\"},\"description\":\"This is a story about paying a steep price for a pair of cheap socks. Bottom line: If you get snagged in a data breach, tie up any loose threads quickly to protect yourself, and stay on top of monitoring your accounts for suspicious activity.\",\"breadcrumb\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/#primaryimage\",\"url\":\"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2021\/10\/fx_tips_hacked_cybersecurity_1920x1080.png\",\"contentUrl\":\"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2021\/10\/fx_tips_hacked_cybersecurity_1920x1080.png\",\"width\":1920,\"height\":1080},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/blog.mozilla.org\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Hacked! Unravelling a data breach\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/#website\",\"url\":\"https:\/\/blog.mozilla.org\/en\/\",\"name\":\"The Mozilla Blog\",\"description\":\"News and Updates about Mozilla\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/blog.mozilla.org\/en\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/33edd7d4d73723140487082573041c83\",\"name\":\"Mozilla\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/image\/f32381c01597770b1131dff44b9d6de1\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/f84bd67e8e3ab3bcc9676910aecf5700?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/f84bd67e8e3ab3bcc9676910aecf5700?s=96&d=mm&r=g\",\"caption\":\"Mozilla\"},\"url\":\"https:\/\/blog.mozilla.org\/en\/author\/mozilla\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Hacked! Unravelling a data breach - The Mozilla Blog","description":"This is a story about paying a steep price for a pair of cheap socks. Bottom line: If you get snagged in a data breach, tie up any loose threads quickly to protect yourself, and stay on top of monitoring your accounts for suspicious activity.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/","url":"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/","name":"Hacked! Unravelling a data breach - The Mozilla Blog","isPartOf":{"@id":"https:\/\/blog.mozilla.org\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/#primaryimage"},"image":{"@id":"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/#primaryimage"},"thumbnailUrl":"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2021\/10\/fx_tips_hacked_cybersecurity_1920x1080.png","datePublished":"2021-10-14T21:30:24+00:00","dateModified":"2021-10-18T18:14:22+00:00","author":{"@id":"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/33edd7d4d73723140487082573041c83"},"description":"This is a story about paying a steep price for a pair of cheap socks. Bottom line: If you get snagged in a data breach, tie up any loose threads quickly to protect yourself, and stay on top of monitoring your accounts for suspicious activity.","breadcrumb":{"@id":"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/#primaryimage","url":"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2021\/10\/fx_tips_hacked_cybersecurity_1920x1080.png","contentUrl":"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2021\/10\/fx_tips_hacked_cybersecurity_1920x1080.png","width":1920,"height":1080},{"@type":"BreadcrumbList","@id":"https:\/\/blog.mozilla.org\/en\/internet-culture\/hacked-unravelling-a-data-breach\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/blog.mozilla.org\/en\/"},{"@type":"ListItem","position":2,"name":"Hacked! Unravelling a data breach"}]},{"@type":"WebSite","@id":"https:\/\/blog.mozilla.org\/en\/#website","url":"https:\/\/blog.mozilla.org\/en\/","name":"The Mozilla Blog","description":"News and Updates about Mozilla","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/blog.mozilla.org\/en\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/33edd7d4d73723140487082573041c83","name":"Mozilla","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/image\/f32381c01597770b1131dff44b9d6de1","url":"https:\/\/secure.gravatar.com\/avatar\/f84bd67e8e3ab3bcc9676910aecf5700?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f84bd67e8e3ab3bcc9676910aecf5700?s=96&d=mm&r=g","caption":"Mozilla"},"url":"https:\/\/blog.mozilla.org\/en\/author\/mozilla\/"}]}},"_links":{"self":[{"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/posts\/67517"}],"collection":[{"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/users\/144"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/comments?post=67517"}],"version-history":[{"count":0,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/posts\/67517\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/media\/67542"}],"wp:attachment":[{"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/media?parent=67517"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/categories?post=67517"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/tags?post=67517"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/coauthors?post=67517"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}