Cyber crimes warning to agents as hackers step up activity

Five cases of cyber crime at agents’ businesses have been uncovered this year by just one company.

All could have been fatal events for the companies concerned.

Four cases involved the agents’ own staff using systems to sell on landlord and property data, and the fifth was a third party professional hacker.

The cases were all uncovered during compliance checks by software firm VTUK.

The firm said that the insider jobs involved disgruntled staff “funding their weekends”– and usually selling on five to ten landlord data per week.

It said that in the fifth case a third party hacker was employed to get into the agency system and managed to do so within five minutes.

VTUK managing director Peter Grant said that in 25 years involving 10,000 consultations, he had never come across one case of cyber crime – until this year.

Grant said that cyber crime was expensive to agents, and mostly undetectable. He said it was entirely possible to sell landlord and property details over the internet, and he sent Eye several examples of how this is being done.

He said he had several examples of data being sold at a going price of £20 per landlord – possibly considered cheap at the price, given the value to a competitor.

Grant warned agents: “The average national revenue from a single landlord with two properties is £2,576.

“If this [cyber hacking] isn’t spotted early, the cost to you could easily be the loss of your business, and yet the perpetrators perceive this as a victimless crime.

“After all, nothing was stolen.

“If you then apply this to organised crime and the value of a list of 300 tenants’ details and those of 100 landlords, you can see why online data is low-hanging fruit.

“Do you know if you have been targeted, or are you perhaps just losing the odd landlord?”

Grant warned agents: “Data deprivation can be enacted remotely by hackers, so is an obvious target for anyone with an axe to grind against the business.”

The security checks that uncovered the hacking were by VTUK on agents’ previous or existing software suppliers, when VTUK was pitching for new business.

VTUK claimed that some of the lapses were uncovered when agents were using some of the best-known industry software.

Grant added that all of the cases uncovered so far related to lettings, but there could easily be others related to sales.

He said: “Imagine getting the whole of that book of an agency. That list is the value of the business.”

Grant said the absolute least that letting agents should do to prevent their data being stolen was to change the password on their deposit scheme log-ins.

He also warned that with offices left empty over the Christmas period, businesses were at increased risk.

x

Email the story to a friend!



3 Comments

  1. wilko

    Could have been a lot worse…….At least the Estate Agency Industry hasn't upset North Korea!

    Report
  2. Robert May

    Over the Christmas break agents would be wise to read the terms and conditions from their Software supplier. I was recently requested to give opinion on a service agreement that effectively allowed all this data to be passed on to third parties without further reference to the Agent- the agreement even assumed the agent had sought DP permission from all concerned for the data to be passed on. Whether that was a one off and unique occurance I can't say but it is well worth checking that no-one has the express contractual consent to benefit from data which ought to be protected and remain confidential.

    Report
  3. robertsmith19

    Always remember to make sure the conveyancers you recommend will protect your clients from hackers and fraud.

    I was very worried about this after reading countless news articles about people losing money and conveyancers not protecting their clients properly, even though it’s their job. Crazy eh! People losing thousands and the conveyancer pretty much ignoring the issue.

    I found the https://safemovescheme.co.uk website by searching on google and recommended it to my conveyancer. Although reluctant they signed up and at least now I have a secure method of checking my conveyancer’s bank account details and can also communicate with them in a secure manner.

    I would never recommend a conveyancer that couldn’t explain how they protect their clients.

    Report
X

You must be logged in to report this comment!

Comments are closed.

Thank you for signing up to our newsletter, we have sent you an email asking you to confirm your subscription. Additionally if you would like to create a free EYE account which allows you to comment on news stories and manage your email subscriptions please enter a password below.