Businesses need to wake up and smell the hackers

eBay is just one target of cybercriminals who cost the global economy $300bn a year

Know you should change your password but can't be bothered? Your inertia may be stirred. The hacking of between 120 million and 145 million eBay accounts, revealed this week, is the latest in a series of huge data leaks to have hit corporate giants.

The leaking of 40 million of its customers' credit card details cost the chief executive of the US retailer Target, Gregg Steinhafel, his job earlier this month and has dented company performance. The US department store group Neiman Marcus, British grocer Morrisons and the social network LinkedIn have also been hit by large-scale data breaches as their goldmines of customer details have been drained, causing corporate humiliation. From "spear phishing" to "sprite" hacks, the types of data breaches are becoming more frequent and more varied.

The perpetrators of the attack on eBay are yet to be discovered but the auction site said criminals elicited customers' names, encrypted passwords, email addresses, physical addresses, phone numbers and dates of birth. It may not seem greatly sensitive but could equate to a mortgage being taken out in your name or your identity being used to commit crime.

Although no financial information was involved, fears are rising that the data could be used in conjunction with information from other hacks – traded on the black market – to build a detailed profile of a victim. Customers have been told to change their password urgently as the hack actually occurred three months ago.

In the meantime, the impact of the Heartbleed bug – thought to have hit 17 per cent of the internet's secure servers – has come to light. Although it is unlikely to be connected to the eBay attack, it heightens the sense that online security is looking shaky.

Reports suggest that eBay users rushing to change their password have swamped the site. "Even if every hacked user changed their password, that would still take six days and many have been unable to change them," says Ian Shaw, managing director of the consultant MWR InfoSecurity.

The cost of hacking to businesses worldwide is escalating. A report on cyber crime and espionage by the Center for Strategic and International Studies in Washington last year estimated that it costs the global economy $300bn (£180bn) a year. An industry is growing around hacking. Research by the accountancy firm PwC shows cyber insurance is the fastest-growing speciality cover ever – worth around $1.3bn a year in the US and anywhere between £50m and £130m in the EU.

The seismic ripples of hacks will have struck fear into the hearts of those in charge of protecting priceless data in large financial institutions. The Financial Policy Committee, the regulator, has recommended that additional studies are made of cyber crime.

In November, the Bank of England told banks to strengthen their defences against online saboteurs and invited 100 bankers, regulators and government officials to take part in a "war game" simulation dubbed "Waking Shark 11' in the City.

Hackers are also raising their profile. Large-scale organisations including Anonymous and the Syrian Electronic Army have become global names and, in the latter's case, fed off the recession in hitting out at large corporate organisations online. However, big companies are also often being outsmarted by small, organised gangs, causing further embarrassment.

On the surface, companies appear remarkably vulnerable to attacks. EBay said its systems were infiltrated via the accounts of a "small number of employee log-in credentials", from which hackers could gain access to an entire database.

"It's like saying 'I'm a little bit pregnant'," said Andrew France, chief executive of the cyber defence company Darktrace. "If the accounts hacked are the chief technology officer or chief executive then the information could be vital."

Businesses are even more vulnerable when suffering deliberate data leaks. In March, the details of thousands of Morrisons' customers were leaked online and to a local newspaper by a disenchanted employee who had legitimate access to the data. "That was a malicious case but often employees are just ignorant about how systems work," says Mr France. "Security needs to spot unusual behaviour, deliberate or otherwise."

The huge eBay security breach also raises a question over public communications as the attack dated back to February. David Emm, a senior researcher at the internet security firm Kaspersky Lab, said: "While it might seem as though eBay has been slow to respond, if the company has only just discovered the full extent of the attack it is now doing the right thing by notifying customers in a timely manner."

Cyber crime seems as if it is inexorably on the up, as does the cost of preventing it. However, if large companies and consumer alike are to prevent it, decisive and frequent action will need to be taken quickly before bank accounts are drained. The latest swathe of hacks may just spark a few more sceptics into action.

Need to know: What to do to stop the hackers

"Change your password, change your password, change your password," says Andrew France at Darktrace. "I know it's a pain but change it every month, use upper and lower case letters and different numbers. It's the only absolute way to avoid hacking."

Brian Krebs, who writes the blog Krebs on Security, which exposed the Target data breach, also advises changing all passwords, but adds: "Be extra wary of phishing emails that spoof eBay and PayPal and ask you to click on some link or download some security tool; attackers are likely to capitalise on this incident to spread malware and to hijack accounts."

Start your day with The Independent, sign up for daily news emails
News
Jeremy Clarkson
people
News
Ben Little, right, is a Labour supporter while Jonathan Rogers supports the Green Party
general election 2015
News
The 91st Hakone Ekiden Qualifier at Showa Kinen Park, Tokyo, 2014
news
Life and Style
Former helicopter pilot Major Tim Peake will become the first UK astronaut in space for over 20 years
food + drinkNothing but the best for British astronaut as chef Heston Blumenthal cooks up his rations
News
Kim Wilde began gardening in the 1990s when she moved to the countryside
peopleThe singer is leading an appeal for the charity Thrive, which uses the therapy of horticulture
Sport
Alexis Sanchez celebrates scoring a second for Arsenal against Reading
football
Life and Style
health
Voices
An easy-peel potato; Dave Hax has come up with an ingenious method in food preparation
voicesDave Hax's domestic tips are reminiscent of George Orwell's tea routine. The world might need revolution, but we like to sweat the small stuff, says DJ Taylor
News
i100
News
Japan's population is projected to fall dramatically in the next 50 years (Wikimedia)
news
ebooks
ebooksA special investigation by Andy McSmith
  • Get to the point
Latest stories from i100
Have you tried new the Independent Digital Edition apps?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

iJobs Job Widget
iJobs Money & Business

SThree: Trainee Recruitment Consultant

£20000 - £25000 per annum + OTE £45,000: SThree: SThree Group have been well e...

Ashdown Group: IT Manager / Development Manager - NW London - £58k + 15% bonus

£50000 - £667000 per annum + excellent benefits : Ashdown Group: IT Manager / ...

Recruitment Genius: Sales Consultant / Telemarketer - OTE £20,000

£13000 - £20000 per annum: Recruitment Genius: Scotland's leading life insuran...

Ashdown Group: Training Programme Manager - City, London

£40000 - £45000 per annum + benefits : Ashdown Group: Training Programme Manag...

Day In a Page

NHS struggling to monitor the safety and efficacy of its services outsourced to private providers

Who's monitoring the outsourced NHS services?

A report finds that private firms are not being properly assessed for their quality of care
Zac Goldsmith: 'I'll trigger a by-election over Heathrow'

Zac Goldsmith: 'I'll trigger a by-election over Heathrow'

The Tory MP said he did not want to stand again unless his party's manifesto ruled out a third runway. But he's doing so. Watch this space
How do Greek voters feel about Syriza's backtracking on its anti-austerity pledge?

How do Greeks feel about Syriza?

Five voters from different backgrounds tell us what they expect from Syriza's charismatic leader Alexis Tsipras
From Iraq to Libya and Syria: The wars that come back to haunt us

The wars that come back to haunt us

David Cameron should not escape blame for his role in conflicts that are still raging, argues Patrick Cockburn
Sam Baker and Lauren Laverne: Too busy to surf? Head to The Pool

Too busy to surf? Head to The Pool

A new website is trying to declutter the internet to help busy women. Holly Williams meets the founders
Heston Blumenthal to cook up a spice odyssey for British astronaut manning the International Space Station

UK's Major Tum to blast off on a spice odyssey

Nothing but the best for British astronaut as chef Heston Blumenthal cooks up his rations
John Harrison's 'longitude' clock sets new record - 300 years on

‘Longitude’ clock sets new record - 300 years on

Greenwich horologists celebrate as it keeps to within a second of real time over a 100-day test
Fears in the US of being outgunned in the vital propaganda wars by Russia, China - and even Isis - have prompted a rethink on overseas broadcasters

Let the propaganda wars begin - again

'Accurate, objective, comprehensive': that was Voice of America's creed, but now its masters want it to promote US policy, reports Rupert Cornwell
Why Japan's incredible long-distance runners will never win the London Marathon

Japan's incredible long-distance runners

Every year, Japanese long-distance runners post some of the world's fastest times – yet, come next weekend, not a single elite competitor from the country will be at the London Marathon
Why does Tom Drury remain the greatest writer you've never heard of?

Tom Drury: The quiet American

His debut was considered one of the finest novels of the past 50 years, and he is every bit the equal of his contemporaries, Jonathan Franzen, Dave Eggers and David Foster Wallace
You should judge a person by how they peel a potato

You should judge a person by how they peel a potato

Dave Hax's domestic tips are reminiscent of George Orwell's tea routine. The world might need revolution, but we like to sweat the small stuff, says DJ Taylor
Beige is back: The drab car colours of the 1970s are proving popular again

Beige to the future

Flares and flounce are back on catwalks but a revival in ’70s car paintjobs was a stack-heeled step too far – until now
Bill Granger recipes: Our chef's dishes highlight the delicate essence of fresh cheeses

Bill Granger cooks with fresh cheeses

More delicate on the palate, milder, fresh cheeses can also be kinder to the waistline
Aston Villa vs Liverpool: 'This FA Cup run has been wonderful,' says veteran Shay Given

Shay Given: 'This FA Cup run has been wonderful'

The Villa keeper has been overlooked for a long time and has unhappy memories of the national stadium – but he is savouring his chance to play at Wembley
Timeless drama of Championship race in league of its own - Michael Calvin

Michael Calvin's Last Word

Timeless drama of Championship race in league of its own