KSL INVESTIGATES

How Quickly Hackers Access, Use Your Personal Data Following A Data Breach

Jul 19, 2021, 7:13 PM | Updated: 9:19 pm

SALT LAKE CITY — You might already know that when personal information gets compromised in a data breach, it often ends up on the dark web where hackers can access it and use it. But do you know how quickly the cyber criminals can reach your data once it hits the dark web?

It could happen within an hour, a cybersecurity researcher told the KSL Investigators, in hopes of sharing this knowledge so we can better protect ourselves.

Crane Hassold normally works hard at keeping the bad guys away from leaked personal information, like our email addresses and passwords. But Hassold, who is the senior director of Threat Research for Agari, and his company did the opposite. They deliberately planted thousands of dummy login credentials in online hacker forums.

“While we are certainly looking to protect our customers against email-based threats, we want to know the full cycle of how these attacks operate,” explained Hassold.

After six months of planting credentials from popular software applications, the Agari researchers found:

  • Nearly one out of five (18%) accounts gets accessed within one hour
  • 40% are accessed by cyber criminals within six hours
  • Half are tapped into within 12 hours of ending up on the dark web

What’s worse is the research showed that often, the hacker only actually logs into a compromised account once. It’s what they do while inside the account that pays off for them.

Agari watched hackers change security settings and set up inbox rules to surreptitiously forward future emails back to the hackers.

“Some attackers that are writing rules, looking for specific types of information and emails, only send me the emails that have to do with payments or invoices or customer information, and only send those to me,” explained Hassold.

What it all showed to Hassold is that it is not enough to change our passwords once our email address has been compromised. He said you need to go through the process of really figuring out what the crook did while inside.

“If an attacker has set up any inbox rules that will forward copies of emails out to another email address, those need to be remediated as well and taken care of as well,” he said. “And so, you need to make sure that all of the footprints of an attacker needs to be taken care of before a compromised account can be determined to be completely fixed.”

The cyber criminals mostly used the dummy accounts to try to send out more phishing emails and links to get even more login credentials.

Hassold said if your account is hacked, you must act fast.

KSL 5 TV Live

Top Stories

KSL Investigates

(KSL TV)...
Daniella Rivera, KSL TV

Tracking Transparency: Why some Utah lawmakers use private email accounts for government business

Are Utah’s lawmakers skirting transparency? The KSL Investigators surveyed legislators to find out why some prefer to use private accounts and devices to do public business.
4 days ago
...
Matt Gephardt & Sloan Schrage, KSL TV

Business takes your money then abruptly shuts down; now what?

Imagine paying a deposit for expensive furniture, only to have the company vanish before you get your stuff. It has become a familiar experience for several Utahns who bought furniture from a Bluffdale store.
6 days ago
Several regulators – foreign and domestic – are cracking down on repair restrictions imposed by...
Matt Gephardt & Sloan Schrage, KSL TV

Repair or replace: The shortening lifespan of consumer goods

As the adage goes, stuff just isn't made the way it used to be. KSL Consumer Investigator Matt Gephardt found there is some powerful evidence it’s true.
7 days ago
FILE PHOTO of workers (Adobe)...
Matt Gephardt, KSL TV

4-day workweek gaining momentum; why employers are smitten with idea

SALT LAKE CITY — While it may sound like the beginning of the end for a company, that work-life balance has some companies saying they wish they had made the switch to a four-day workweek a long time ago. Bosses have tried increasing pay, increasing benefits and increasing flexibility with work-from-home opportunities. But none of […]
11 days ago
...
Mike Headrick & Cindy St. Clair, KSL TV

Locked out: Fishermen upset by new gate at Pineview Reservoir

Unlike years past, something stood in the way of the fishermen: A newly installed gate at the popular Port Ramp boat launch area.  
12 days ago
Jason-Paul Delue tells KSL's Matt Gephardt that he discovered the power company had installed a dev...
Matt Gephardt & Sloan Schrage, KSL TV

Orem man says power company installed remote switch to limit his A/C without his permission

For years, Rocky Mountain Power has installed switches on A/C units that allows it to remotely toggle off the air conditioning to save energy during heat waves. It has always been a voluntary thing, but an Orem man says one was installed on his A/C unit without his permission.
13 days ago

Sponsored Articles

Earth day 2022...
1-800-GOT-JUNK?

How Are You Celebrating Earth Day 2022? | 4 Simple Ways to Celebrate Earth Day and Protect the Environment

Earth Day is a great time to reflect on how we can be more environmentally conscious. Here are some tips for celebrating Earth Day.
Get Money Online...

More Ways to Get Money Online Right Now in Your Spare Time

Here are 4 easy ways that you can get more money online if you have some free time and want to make a little extra on the side.
Lighting trends 2022...

Lighting Trends 2022 | 5 Beautiful Home Lighting Trends You Can Expect to See this Year and Beyond

This is where you can see the latest lighting trends for 2022 straight from the Lightovation Show at the Dallas World Trade Center.
What Can't You Throw Away in the Trash...

What Can’t You Throw Away in the Trash? | 5 Things You Shouldn’t Throw in to Your Trash Can

What can't you throw away in the trash? Believe it or not, there are actually many items that shouldn't be thrown straight into the trash.
Make Money Online Easily...

4 Ways that You Can Make Money Online Easily in Just a Few Clicks

Here are 4 ways that you can make money online easily in no time at all! Some are as simple as just a few clicks away.
tips to winterize your home...
Bonneville Digital SLC

Tips to Winterize Your Home | The Top 5 Ways You Can Prepare for the Cold Utah Winter Ahead

Before the snow hits, here are the top 5 tips to winterize your home to prepare for the cold Utah winter this year.
How Quickly Hackers Access, Use Your Personal Data Following A Data Breach