Fuse Networks Blog

A Look at this Year’s Worst Cybercrimes

A Look at this Year’s Worst Cybercrimes

It’s fair to say that today's organizations are faced with more online threats than ever before. To properly manage the information systems that they depend on for productivity, redundancy, and operational management, they need to ensure that they are doing what they need to do to mitigate problems stemming from the continuous flow of threats.

To give our readers just a taste of what they are up against, we’ve decided to put together a list of the most devastating hacks, infiltrations, and malware attacks that have happened so far in 2018. Additionally, we provide some telling statistics that will put into perspective just how important your network security and cybersecurity initiatives are.

Public
January

  • The Department of Homeland Security was affected by a data breach that exposed information about 247,167 current and former employees.

March

  • Atlanta, Georgia was targeted by a ransomware attack called SamSam. This resulted in a massive problem for their municipal infrastructure. The ransom price given was $51,000, but Atlanta’s leadership refused to meet these demands. Overall, the numbers show that Atlanta has spent more than 10 times that number in the fallout of the attack. Some estimates place the actual cost of this event at nearly $20 million.
  • India’s national ID database, Aadhaar, leaked data of over a billion people. This is one of the largest data breaches in history. A user could pay 500 rupees, equal to about $7, to get the login credentials that allowed anyone to enter a person’s 12-digit code for their personal information. For 300 rupees, or about $4.20, users could also access software that could print an ID card for anyone associated with the database.
  • Cambridge Analytica, a data analytics company that U.S. President Donald Trump used to help his campaign, harvested personal information from over 50 million Facebook users without asking for their permission. Facebook hasn’t called this a data breach, but Cambridge Analytica has since been banned from using the service thanks to this event.

June

  • A hack of a U.S. Government-funded active shooter training center exposed the personal data of thousands of U.S. law enforcement officials. This also exposed which police departments aren’t able to respond to an active shooter situation.

Private
January

  • 280,000 Medicaid records were exposed when a hacker attacked the Oklahoma State University Center for Health Sciences. Among the information exposed were patient names, provider names, and full names for affected individuals.

February

  • An unsecured server owned by Bongo International, a company acquired by FedEx, leaked over a hundred-thousand files of FedEx customers. Some of the information leaked included names, drivers’ licenses, national ID cards, voting cards, and utility bills.

March

  • Orbitz, a travel booking site, fell victim to a security vulnerability that exposed 880,000 customers’ payment card information. There was also about two whole years of customer data stolen from their server.
  • French news site L’Express left a database that wasn’t password-protected up for weeks, despite being warned about the security issues regarding this.
  • 134,512 records regarding patients and financial records at the St. Peter’s Surgery and Endoscopy Center in Albany, NY were accessed by hackers.
  • MyFitnessPal, an application used by Under Armor, exposed about 150 million people’s personal information to threats.
  • The WannaCry ransomware claimed another victim in Boeing, which stated that “a few machines” were protected by Microsoft’s 2017 patch.

May

  • Thanks to Twitter storing user passwords in a plaintext file that may have been exposed by internal company staff, the social media titan had to force hundreds of millions of users to change their password.
  • An unauthenticated API found on T-Mobile’s website exposed the personal information of all their customers simply through the use of their cell phone number. The following information was made available: full name, address, account numbers, and tax IDs.
  • A bug found in Atlassian development software titles Jira and Confluence paved the way for hackers to sneak into IT infrastructure of several companies and one U.S. government agency.
  • Rail Europe, a popular server used by American travelers to acquire rail tickets, experienced a three-month data breach that exposed credit card information to hackers.

June

  • A marketing company named Exactis had 340 million records stolen from it, but what’s most shocking about this is that they had accumulated information about nearly every American out there. In response to the breach, there was a class action lawsuit made against the company.
  • Adidas’s website was hacked, resulting in a loss of a few million users’ personal and credit card information.
  • A hacker collective called Magecart initiated a campaign to skim at least 800 e-commerce sites, including Ticketmaster, for sensitive information.

That list of traumatic security issues all occurred in the first half of 2018. This doesn’t consider the major hacks that are still affecting people from 2017 and before. Some examples include the Friendfinder hack that exposed 412 million user accounts, and the well-documented Equifax data breach that leaked the financial information of over 147 million people. Here are some of the statistics to help put in perspective the state of Internet threats at present:

  • In 2017 over 130 large-scale breaches were reported, a 27 percent increase over 2016.
  • Nearly 1-in-3 organization have experienced some sort of cyberattack in the past.
  • Cryptojacking (stealing cryptocurrency) increased 8,500 percent in 2017.
  • 100,000 organizations were infected with the WannaCry ransomware (400,000 machines).
  • 5.4 billion WannaCry attacks were blocked in 2017.
  • The average monetary cost of a malware attack is $2.4 million.
  • The average time cost of a malware is 50 days.
  • Ransomware cost organization’s over $5 billion in 2017.
  • 20 percent of cyber attacks come from China, 11 percent from the United States, and six percent from the Russian Federation.
  • Phone numbers are the most leaked information.
  • 21 percent of files are completely unprotected.
  • 41 percent of companies have over 1,000 sensitive files left unprotected.
  • Ransomware is growing at 350 percent annually.
  • IoT-based attacks are growing at about 500 percent per year.
  • Ransomware attacks are expected to quadruple by 2020.
  • 7.7 percent of web requests lead to malware.
  • There were 54 percent more types of malware in 2017 than there were in 2016.
  • The cybersecurity market will be worth over $1 trillion by 2025.

If this list is as scary to you as it is to us, you’ll do your best to secure your network, data, and infrastructure from Internet-based threats. For more information about how to facilitate a comprehensive cybersecurity strategy, call us today at 855-GET-FUSE (438-3873).

Tip of the Week: 5 Useful Browser Tips
Hackers Continuously Target Major Sporting Events
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Tuesday, March 19 2019

Captcha Image

Newsletter Sign Up

  • No-Spam Guarantee: We hate spam as much or more than you do and will NEVER rent, share or give your information away to anyone else. We will only use your information to communicate with you direct, and you can also remove yourself from our list at any time with a simple click..
  • Company Name *
  • First Name *
  • Last Name *

      Mobile? Grab this Article!

      QR-Code dieser Seite

      Tag Cloud

      Security Tip of the Week Technology Best Practices Tech Term Network Security Hackers Business Computing Privacy Innovation Productivity Data Backup Collaboration Android Cybersecurity Data recovery User Tips Computer IT Support Data Software Google Efficiency Communications Email Communication Internet IT Services Business Management Malware Mobile Device Office 365 Hosted Solutions Smartphone Hardware VoIP Mobile Devices Small Business Applications Microsoft Office Cost Management Facebook Browser Managed Service Artificial Intelligence Access Control Backup Business Technology Information Social Media Smartphones Cloud Phishing Blockchain Cybercrime Ransomware Scam Vulnerabilities Cloud Computing Automation Data Security Saving Money Business Windows 10 Holiday Mobile Device Management Workplace Tips Two-factor Authentication Passwords BDR Maintenance Apps Internet of Things Vulnerability Hacking Remote Monitoring Managed IT services App Update Data loss Gmail Users Apple Saving Time Outsourced IT Cooperation Websites Printer Bitcoin Conferencing Tech Terms Document Management Network Mobility Vendor Bandwidth Data Breach Healthcare Microsoft Alert Augmented Reality Patch Management IT Management Google Maps Social Engineering Quick Tips Disaster Recovery Term Gadgets Budget Legislation Trends Government CIO Microsoft 365 Tip of the week Backup and Disaster Recovery Error Training Computer Care Vendor Management Professional Services Identity Theft Navigation Addiction User Tip SSID Distributed Denial of Service Information Technology Computers Virtualization Fileless Malware Hard Drive Big Data Google Play Gamification Legal Bookmark Managed IT Services Mobile Security Website Twitter Telephone Comparison Devices Equifax Service Level Agreement Voice over Internet Protocol Cryptocurrency Laptop Miscellaneous Screen Reader Knowledge Google Calendar Computing Infrastructure Freedom of Information Nanotechnology Server Downloads Directions Hard Drive Disposal Health IT Security Cameras SharePoint Downtime Emails Law Enforcement Browsers Social Network Specifications Networking Compliance Spam Startup Going Green NCSAM iPhone Desktop Monitoring Evernote Windows 10 Machine Learning Analytics Medical IT News Mobile Technology Operating System Travel Cortana Cost email scam HTML Television Social project management Piracy Bluetooth WiFi Digital Multi-factor Authentication Paperless Office Customer Resource management Business Cards Regulations Download Managed Service Provider Unified Communications IT Retail Management Business Continuity Google Docs Network Management Audit Proxy Server Data Management Fake News Virtual Reality Username Disaster Microchip eWaste VPN Mouse Sports Router Money Software License Wireless Headphones Content Entertainment Virtual Assistant Device security Database Telephone System Tech Upload Printing Support Windows 7 Excel Antivirus Chromebook Computing Accountants Encryption Help Desk PowerPoint Microsoft Excel Company Culture Fuse Networks Emergency Processor Robot Data Protection Modem Cleaning BYOD Data Analysis Productivity Tactics Electronic Medical Records Customer Relationship Management Competition IP Address Hard Drives Solutions Customer Service Search Regulation Printers Mobile Office Upgrade Integration Domains Wireless Managing Stress Public Speaking Presentation Wi-Fi Lithium-ion battery Multi-Factor Security Hiring/Firing Tech Support Wireless Technology 5G IBM Fun Safety Marketing Hacker Employer-Employee Relationship The Internet of Things