Prevent Being Added to the Cybercrime Shopping List

Topics in this article

woman's hands typing on dell xps 13 laptop

Like many other people this season, my kids’ holiday wish list is filled with IOT connected devices.  However, after counting upwards of 40 connected devices we already own – ranging from TV, gaming consoles, thermostat, printers, security cameras, and bathroom floor (don’t ask) – it made me pause to think about how much of our personal and financial information might be leaking out.

During the holiday season, we all need to be on especially high alert after several mega data breaches this year. We’re all at high risk for fraud as cybercriminals are testing stolen credentials across many popular consumer websites.

RSA Anti-Fraud Command Center created the 2018 Cybercriminal Shopping List this year by monitoring and investigating dozens of cybercrime forums where we saw stolen information being bought and sold for prices ranging from mere cents up to $15 per account.

RSA Cybercriminal Shopping List 2018 infographic

Whether you’ve made a purchase online this holiday season or not, follow these five quick steps help to better protect yourself from cybercrime:

  1. Closely monitor your accounts – Activate fraud alerts on all your financial and health-related accounts. Examples of alerts are: new payee, money withdrawal, high-value credit card transaction, insurance claim submitted, use of hospitality loyalty points or new healthcare record.
  2. Take inventory of every device connected to the internet – Every new device you get this holiday season, start by changing the default usernames and passwords and installing security updates and turning off devices when not in use. Chances are, you use the same password for many of your accounts so it is more important than ever to change your passwords.
  3. Resist the click – During the holiday season, we are all looking for a bargain. However, RSA’s Anti-Fraud Command Center identifies a new Phishing attack every 30 seconds and it tends to increase this time of year.  When you get a text, email or see a link to a video on social media, take caution before you click.
  4. Back it up – Many phishing attempts are now linked to ransomware, which is why it is especially important to back up data offline, so if you are a ransomware target, you will be prepared.
  5. Beware of work at home scams – If you are looking to make extra money during the holiday season, work from home jobs are appealing. Remember, criminal gangs rely on an extensive network of people to pull off their scams. Victims are often recruited by work from home job scams that involve reshipping packages or receiving funds in their bank account.  If it sounds too good to be true, then it probably is.

Perhaps most importantly: don’t forget to demand security from the organizations you do business with!

Ultimately, by doing this, it will allow you to stop fraud before it happens, reducing identity theft and account takeover.


The impact of cybercrime is staggering. Check out RSA’s dynamic infographic, “The Mind-Blowing Cost of Cybercrime Every 60 Minutes,” to see the scale of the problem. Follow us on @RSASecurity to stay up to date on the latest cybercrime trends. Have a safe and happy holiday.

About the Author: Angel Grant

While at RSA she has lead the go-to market strategy, planning and execution for the Enterprise and Consumer Authentication, Identity and Access Management, Anti-Fraud and Threat Intelligence solutions product portfolios. She represents RSA on the FS-ISAC Board, PCI Council, NACHA’s Payments Innovation Alliance Risk, Regulatory and Security Advisory Committee and the Federal Reserve Bank Secure Payments Task Force. Angel has over 20 years of experience in the security, eCommerce and financial services industries and is a visionary leader with a passion for developing security solutions to protect against cybercrime and make our digital world a safer place.
Topics in this article