5 Things You Need to Do Following the Marriott and Quora Data Breaches

Two big data breaches are in the news this week. Marriott announced that approximately 500 million customer records may have been breached and Quora announced that user data of 100 million accounts may have been compromised.

Here are 5 things you should do if you think you may be a victim:

1. Be on the lookout for phishing emails.

When data breaches of this magnitude happen, it opens the door for hackers to take advantage of your worry by sending you phishing emails asking you to change your password, sign-in to monitor your activity or some other call to action to gain your information.

If you receive an email notifying you of the breach, it is best practice to go directly to the website to change your password instead of using the link provided in the message.

2. Change your passwords

Whenever a breach happens, you should always change your passwords. Protect yourself by using unique passwords for different online accounts. If you don’t use different passwords for all of your accounts, you should use this as an opportunity to do so.

Instead of using short, complex, and hard to remember passcodes, use passphrases such as BillsWifeSarah or Mycatsginger that are at least 8 characters in length and are not commonly used (e.g. password).

3. Turn on two-factor authentication

Enable two-factor authentication on all your online accounts and devices, whenever possible. So instead of just entering your password, you would enter a combination of 2 things, such as your password plus a one-time password or PIN received over text message.

4. Take steps to protect your credit

Check your credit reports for free with Equifax, Experian and TransUnion by visiting www.annualcreditreport.com. Review your payment card statements for charges you don’t recognize. Place a fraud alert on your credit files so creditors verify that anyone seeking credit in your name is really you. Or you can request a free credit freeze on your accounts to block someone from opening new accounts in your name.

5. Stay Informed

Marriot and Quora are regularly updating and providing support to potential victims.

Stop Phishing Attacks with ERMProtect's Security Awareness Training

Turn your employees into a human firewall with our innovative Security Awareness Training.

Our e-learning modules take the boring out of security training.

ERMProtect's Weekly Newsletter

Get a curated briefing of the week's biggest cyber news every Friday.

Intelligence and Insights

Cybersecurity Incident

How to Prepare Your Organization for a Cybersecurity Incident

Preparing for a cybersecurity incident substantially decreases damage and costs and helps get companies back to business as quickly as possible …
cloud computing

Regular Penetration Testing Reduces Risks in the Cloud

Cloud penetration testing is a simulated attack to assess the security of an organization’s cloud-based applications and infrastructure, and it is critical in today’s digital world …
Information Technology (IT) risk assessments

Choosing the Right Risk Assessment Protects Against Cyber Threats

IT risk assessments provide invaluable benefits to the security of your organization. This article outlines key factors to consider …