For small businesses, using social media is no longer a choice, but how many do it safely and know how to secure their accounts? Leaving digital doors open to online criminals costs businesses thousands each year.
Over 22% of internet users reported that their online accounts had been hacked at least once
One of the most popular social media channels for small businesses is Instagram. In fact, for businesses, Instagram has become more than a social media channel or somewhere to post aesthetic pictures and videos. It is now a digital shopfront that enables businesses to find suppliers and stockists, connect with other small businesses, communicate with customers and promote products/services.
Given how important it is, are businesses doing enough to protect this lifeline? In short the answer is no, as a report from 2023 evidenced that in the US, there was a 400% increase in Instagram hacking attacks during the height of the COVID-19 pandemic.
Protecting our accounts from hackers is vital and very simple to do, we have provided steps on how to do so.
So, what’s it like to have your account hacked?
For one social media influencer, they lost their account in seconds due to hackers gaining access to the account. The influencer received a message which at first glance seemed like an official message from Instagram. The message was positioned to scaremonger the user into thinking they had violated a copyright law, and to prevent the account from being closed within 24 hours, they needed to follow the onscreen instructions.
They clicked on the link, logged into their #Instagram account, and within seconds were logged out of their account. Their passwords were changed, and they were no longer able to access their account. This is a real example of a #phishing attack where the business owner lost access to a system they heavily rely on.
The business then received a #whatsapp message from the #hacker with instructions on how to pay so they could regain control of their account or face its deletion within 24 hours. The company had built their online presence over the last 8 years, so quite rightly were worried about the potential loss of valuable content and customer contacts.
So, how can I protect myself and my business and keep my accounts secure?
Update your password and pick a secure one - Make sure you are using a strong and separate password to protect your email - Don't use the same password on multiple accounts! Make sure that you're protecting your other important accounts, such as banking or social media.
Always enable two-step verification (2SV) - It really simple to set up and will help you to stop hackers from getting into your online accounts, even if they find your password.
Think before you authorise any third-party apps – Do not share your login information with apps you don’t know or trust.
Log out of shared devices – Never tick the ‘Remember me’ box when logging into your account on a shared device and log out after using the device.
Keep a backup of your Instagram data – By keeping a back up of your data, you will be able to have an export of your photos, comments and messages so that if you are hacked, your account content will not be lost.
Always report suspicious emails you have received. Please forward scam emails to report@phishing.gov.uk. and suspicious texts you have received but not acted upon to 7726
If you think you've become a victim of a cyber-attack:
If you lose access to your account or a hacker has taken control, please follow the NCSC’s guidance on how to recover a compromised account.
If you receive a demand for money, do not pay the suspect so you can regain access to your account. It’s likely that the suspect will demand more money instead of giving you control of your account back.
If you have paid any money, contact your bank immediately and report it to Action Fraud online or call 0300 123 2040 as soon as possible.
Need further support? The South East Cyber Resilience Centre can assist you with additional options:
The South East Cyber Resilience Centre (SECRC) itself is a small business which has been set up as a police-private sector-academia partnership, with the simple aim of raising cyber resilience across the South East region. Whilst cyber security can be complex and costly, the SECRC offers a free membership option which helps you understand some of the risks from cybercrime, but also offering support and guidance to businesses in the region.
By taking proactive steps to strengthen your cyber security defences, you can significantly reduce the risk of falling victim to a cyber attack and protect your business from potential harm.
If you have any questions or need further guidance on improving your small business cyber security, please do not hesitate to reach out. Remember, when it comes to cyber security, prevention is always better than cure.
Comments