If a scammer has your phone number, you should lock your SIM card, secure your online accounts with strong passwords and block spam calls from your
If you realize that your personal information has been found on the dark web, you may be wondering how this could have happened. Your personal information could have ended up on the dark web through a data breach, a compromised account, a phishing scam or a malware infection. The dark web is part of the internet used by cybercriminals to buy and sell stolen information.
Continue reading to learn how to tell if your personal information is on the dark web, how it got there and how to protect your identity.
How to know if your personal information is on the dark web
One of the most convenient ways to find out whether your personal information is on the dark web is by using a free dark web scan tool. A dark web scan refers to scanning a database of billions of pieces of personal information compromised by data breaches. If the scan finds a match between the information you input and its database, you will be notified that your information has been found on the dark web.
How did my information get on the dark web?
Your information could have appeared on the dark web in a number of ways, including a data breach, phishing scam or malware infection.
You were part of a public data breach
A public data breach occurs when an organization’s data is stolen by cybercriminals due to human error or weaknesses within the organization’s security systems. For example, if you have an account with a large online shopping company and that company suffers a data breach, you may receive an email from that company notifying you that your personal information was compromised. This means the cybercriminal may have your Personally Identifiable Information (PII), which could include your driver’s license number, credit card information, Social Security number (SSN), email address or phone number. If a cybercriminal has your personal information, they could sell it on the dark web for profit.
One or more of your accounts were compromised
Your account(s) could have been compromised following a data breach, using weak passwords, not enabling Multi-Factor Authentication (MFA), falling for a phishing scam or installing malware on your device. A compromised account is one that has been accessed by someone without your permission. If a cybercriminal correctly cracked your password or you accidentally sent your login credentials to them in a phishing scam, your account could be compromised. Once a cybercriminal has your personal information, they can use it to gain more personal information from your other accounts or sell it on the dark web for others to use.
You fell for a phishing scam
Phishing scams are more challenging to detect, especially when cybercriminals rely on AI to make them believable. A phishing scam occurs when a cybercriminal sends you an email or text message to persuade you to share sensitive information, like passwords or credit card numbers. You may fall for a phishing scam because the cybercriminal impersonates someone you trust or a company you have an account with to appear more credible. If you share your personal information with someone claiming to be a person or company you trust, they can take your personal information and sell it on the dark web.
Your device was infected with malware
In a phishing scam, a cybercriminal may include a link for you to click or an attachment for you to download disguised as something legitimate. For example, if the phishing scam is from a company you regularly shop with online, the email might ask you to click the link to verify that your account information is correct before it gets deactivated. This could lead you to click an unsolicited link, which may be infected with malware. Malware is malicious software that can infect your device and send your private data to a cybercriminal. Once malware is installed on your device, a cybercriminal can successfully monitor your online activity and even spy on you using spyware – a type of malware installed on your device without your knowledge to gather sensitive information. A cybercriminal can use any kind of malware or spyware to collect your personal information and sell it on the dark web.
You connected to public WiFi
Something as simple as using unsecured public WiFi could put you at risk of having your identity stolen. For example, if you are walking through an airport and connect to public WiFi, someone could have hacked that network and may infect any connected device with malware. If you use public WiFi to check your bank account or make an online purchase, a cybercriminal who hacked the network could gain access to your private information and potentially sell it on the dark web.
How do I remove my information from the dark web?
Unfortunately, once your personal information is on the dark web, it is impossible to remove it. However, there are several steps you can take to protect your identity.
Change your compromised passwords
The first thing you should do when you realize your personal information is on the dark web is change the passwords of your compromised account(s). A convenient way to check which of your accounts have been compromised is by using a password manager that has a built-in dark web monitoring tool. Keeper Password Manager offers BreachWatch®, which constantly scans the dark web for you and notifies you if your personal information has been found on the dark web. This allows you to take immediate action and quickly change your compromised passwords. Using Keeper Password Manager, you can generate strong and unique passwords, updating your compromised ones with random, new passwords to secure your accounts.
Enable Multi-Factor Authentication (MFA) on all your accounts
Multi-Factor Authentication (MFA) is essential for adding an extra layer of security to your accounts because enabling it requires you to have your username, password and another form of verification to gain access. Some examples of MFA include a code from an authenticator app, a PIN, a fingerprint scan or a facial recognition scan. Having MFA enabled means that even if a cybercriminal accessed your username and password, your account would still be protected because they would not have your MFA method. MFA protects your accounts from cyber attacks by requiring validation of your identity before allowing access to your account.
Freeze your credit
A credit freeze stops anyone from opening new lines of credit or loans in your name. Freezing your credit will prevent creditors from accessing your credit report, which can help protect you from becoming a victim of identity theft. For example, if your SSN or bank account number was found on the dark web, you would want to place a credit freeze to prevent anyone from impersonating you and opening a new credit card in your name. Unless you plan on taking out loans or opening new credit lines, it may be safer to freeze your credit as a security precaution regardless of whether you believe your identity is being stolen. To place a credit freeze, you must contact each of the three major credit bureaus separately: Experian, TransUnion and Equifax.
Scan your device using antivirus software
Antivirus software detects, stops and eliminates any known viruses or malware before they can infect your device. This helps you stay safe online and protects your personal information from appearing on the dark web due to it being stolen by cybercriminals using malware. By constantly scanning your device for viruses or malware, antivirus software will delete any viruses that match its database of known viruses. This ensures real-time protection and allows you to rest easy knowing your personal information is safeguarded against viruses and malware.
Stay protected against the dark web with Keeper
Keeper can help protect your information from landing on the dark web with Keeper Password Manager and its special feature, BreachWatch. Since BreachWatch constantly scans the dark web for your personal information, Keeper Password Manager can improve your online safety and enhance the security of your accounts.
Start a free 30-day trial of Keeper Password Manager, and discover how BreachWatch can monitor the dark web to always be on the look-out for your personal information.