k_Street Consulting, LLC Blog

The Most Devastating Hacks of 2018… So Far

The Most Devastating Hacks of 2018… So Far

Network security is a crucial consideration for every contemporary business owner, as there are just too many threats that originate from an Internet connection to be overlooked. One only has to look at what businesses of all sizes have dealt with, even within this calendar year, to gain an appreciation for how crucial it is that every business owner consider their cybersecurity.

Here, we’ve assembled a few statistics and examples to illustrate just how serious the threat of cyberattack can be, hopefully inspiring you to prioritize your company’s network security. Consider these cybersecurity figures:

  • In 2017 over 130 large-scale breaches were reported, a 27 percent increase over 2016.
  • Nearly 1-in-3 organization have experienced some sort of cyberattack in the past.
  • Cryptojacking (stealing cryptocurrency) increased 8,500 percent in 2017.
  • 100,000 organizations were infected with the WannaCry ransomware (400,000 machines).
  • 5.4 billion WannaCry attacks were blocked in 2017.
  • The average monetary cost of a malware attack is $2.4 million.
  • The average time cost of a malware is 50 days.
  • Ransomware cost organization’s over $5 billion in 2017.
  • 20 percent of cyberattacks come from China, 11 percent from the United States, and six percent from the Russian Federation.
  • Phone numbers are the most leaked information.
  • 21 percent of files are completely unprotected.
  • 41 percent of companies have over 1,000 sensitive files left unprotected.
  • Ransomware is growing at 350 percent annually.
  • IoT-based attacks are growing at about 500 percent per year.
  • Ransomware attacks are expected to quadruple by 2020.
  • 7.7 percent of web requests lead to malware.
  • There were 54 percent more types of malware in 2017 than there were in 2016.
  • The cybersecurity market will be worth over $1 trillion by 2025.

If that wasn’t convincing enough, what follows is just an assortment of the attacks that 2018 has seen (as of July). To simplify things, we’ve organized them by the intended targets: public (like individuals and government bodies) and private (such as businesses):

Public
January

  • The Department of Homeland Security was affected by a data breach that exposed information about 247,167 current and former employees.

March

  • Atlanta, Georgia was targeted by a ransomware attack called SamSam. This resulted in a massive problem for their municipal infrastructure. The ransom price given was $51,000, but Atlanta’s leadership refused to meet these demands. Overall, the numbers show that Atlanta has spent more than 10 times that number in the fallout of the attack. Some estimates place the actual cost of this event at nearly $20 million.
  • India’s national ID database, Aadhaar, leaked data of over a billion people. This is one of the largest data breaches in history. A user could pay 500 rupees, equal to about $7, to get the login credentials that allowed anyone to enter a person’s 12-digit code for their personal information. For 300 rupees, or about $4.20, users could also access software that could print an ID card for anyone associated with the database.
  • Cambridge Analytica, a data analytics company that U.S. President Donald Trump used to help his campaign, harvested personal information from over 50 million Facebook users without asking for their permission. Facebook hasn’t called this a data breach, but Cambridge Analytica has since been banned from using the service thanks to this event.

June

  • A hack of a U.S. Government-funded active shooter training center exposed the personal data of thousands of U.S. law enforcement officials. This also exposed which police departments aren’t able to respond to an active shooter situation.

Private
January

  • 280,000 Medicaid records were exposed when a hacker attacked the Oklahoma State University Center for Health Sciences. Among the information exposed were patient names, provider names, and full names for affected individuals.

February

  • An unsecured server owned by Bongo International, a company acquired by FedEx, leaked over a hundred-thousand files of FedEx customers. Some of the information leaked included names, drivers’ licenses, national ID cards, voting cards, and utility bills.

March

  • Orbitz, a travel booking site, fell victim to a security vulnerability that exposed 880,000 customers’ payment card information. There was also about two whole years of customer data stolen from their server.
  • French news site L’Express left a database that wasn’t password-protected up for weeks, despite being warned about the security issues regarding this.
  • 134,512 records regarding patients and financial records at the St. Peter’s Surgery and Endoscopy Center in Albany, NY were accessed by hackers.
  • MyFitnessPal, an application used by Under Armor, exposed about 150 million people’s personal information to threats.
  • The WannaCry ransomware claimed another victim in Boeing, which stated that “a few machines” were protected by Microsoft’s 2017 patch.

May

  • Thanks to Twitter storing user passwords in a plaintext file that may have been exposed by internal company staff, the social media titan had to force hundreds of millions of users to change their password.
  • An unauthenticated API found on T-Mobile’s website exposed the personal information of all their customers simply through the use of their cell phone number. The following information was made available: full name, address, account numbers, and tax IDs.
  • A bug found in Atlassian development software titles Jira and Confluence paved the way for hackers to sneak into IT infrastructure of several companies and one U.S. government agency.
  • Rail Europe, a popular server used by American travelers to acquire rail tickets, experienced a three-month data breach that exposed credit card information to hackers.

June

  • A marketing company named Exactis had 340 million records stolen from it, but what’s most shocking about this is that they had accumulated information about nearly every American out there. In response to the breach, there was a class action lawsuit made against the company.
  • Adidas’s website was hacked, resulting in a loss of a few million users’ personal and credit card information.
  • A hacker collective called Magecart initiated a campaign to skim at least 800 e-commerce sites, including Ticketmaster, for sensitive information.

Clearly, if these lists are any indication, companies of all sizes need to commit to maintaining their network security, holding it to a higher standard. For assistance in doing so, you can rely on the professionals at k_Street Consulting, LLC. We can design and implement security solutions to protect you from threats like these, and others that may rear their ugly heads. Give us a call at (202) 640-2737 to get started.

Is Email Actually More Trouble than It’s Worth?
How Much Have Smartphone Cameras Made a Difference...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Thursday, May 23 2019

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

OLED HIPAA Wireless Troubleshooting Virtual Desktop Amazon Web Services Battery Smart Office Video Games Amazon Virtual Assistant Internet Exlporer Paperless Office Black Market MSP Hardware Charger Rootkit Facebook Antivirus Big data NIST Shortcuts Safety Office 365 Mobile Computing IT Plan Tip of the week Private Cloud Hosted Computing Password Internet Save Money Robot Windows 10s Phone System Analyitcs Best Practices Business Mangement Tip of the Week HBO Access Control Outsourced IT Identity Theft Emails Electronic Medical Records User Specifications Multiple Versions Computing Infrastructure Default App Network Security BYOD Remote Monitoring Line of Business Software as a Service Internet of Things avoiding downtime Employer Employee Relationship Regulation Content Filtering Bing Software Tips IT Services Mobile Device Vulnerability Cost Management Data Protection Evernote Streaming Media Windows 7 Password Manager Retail Botnet Google Docs Best Available Virtual Private Network Cybersecurity Administration Automobile Productivity Start Menu Environment Microsoft Office Pain Points Wireless Internet Audit Excel Smart Technology Windows 10 Analytic Windows Media Player HaaS Business Continuity Music Proactive Samsung Outlook Administrator Tablets Loyalty Managed Service Provider Spam Patch Management Statistics Cabling Customers Business Read eWaste Data loss User Tips Gadgets Virus Practices Cryptomining Files Congratulations Money Tools Apps Hosted Solution Theft Consultant Professional Services Company Culture Data IT Support Entertainment Save Time Knowledge Network Screen Mirroring Telephony Internet exploMicrosoft Instant Messaging Biometrics Computer The Internet of Things Touchpad Mobility IT Solutions Computers Chromecast Productivity Collaboration Business Intelligence Human Resources Physical Security Employee/Employer Relationship Proactive IT Product Reviews Managed IT Logistics Saving Time Two-factor Authentication Telecommuting Managed IT Services Thought Leadership YouTube Workplace Tips Database Privacy Operating Systems Google Search How To Apple Wire Artificial Intelligence Computer Fan Utility Computing Data storage Safe Mode Smartwatch Office Tips Technology Infrastructure Computer Repair Insurance Word Android Supercomputer Worker App Domains Content Operating System Printer Server Leadership Digital Payment Skype Managed Service File Sharing Education Remote Computing Mouse Biometric Security Audiobook Thank You Fiber-Optic 5G Advertising Bloatware Update Smartphone Virtual Reality Conferencing Maintenance Help Desk Students Google Drive Scalability Scam Netflix Restore Data Customer Relationship Management Net Neutrality IT service Backup Cache Managed IT Services Ransomware Shortcut VPN Wireless Charging ISP Bring Your Own Device Vendor Management Communication Password Management Training Data Backup Twitter Flexibility Relocation Warranty Online Shopping IT solutions Root Cause Analysis Shadow IT Bandwidth Electronic Health Records WIndows 7 Government FENG Budget Content Management eCommerce LinkedIn Telephone Systems Enterprise Content Management Recovery Sync Software Authentication Healthcare GDPR Cables Application BDR Managing Stress Risk Management HVAC Memory Politics Marketing Notifications Website Voice over Internet Protocol Monitor Small Business Office Social Media Mobile Device Management USB Wearable Technology Data Warehousing Hring/Firing IT Consultant Backup and Disaster Recovery Archive Health Miscellaneous Spam Blocking Workforce DDoS Sports Disaster Recovery Hacking SaaS Remote Monitoring and Maintenance IBM Best Practice Workers Credit Cards Gmail Accountants Telephone System Frequently Asked Questions Distributed Denial of Service Gaming Console Value Remote Work Phishing Analysis Chrome Camera WiFi Cast Hackers Tablet travel Security iphone Business Technology Data Management Two Factor Authentication webinar Cybercrime Email Webinar Wiring Remote Worker Point of Sale SharePoint analytics PowerPoint Public Cloud Programming Inventory Storage Applications Data Recovery Saving Money Running Cable Techology Upgrade Router Benefits Cloud Servers Nanotechnology Wi-Fi Tech Support Microsoft Comparison Search Data Security E-Commerce Blockchain Staff Intranet Browser Cortana Mobile Devices Machine Learning Millennials Virtualization Network Congestion Books Hard Drives Firewall Unified Communications Social Engineering Passwords IaaS Social Networking IT Support Connectivity malware Efficiency CrashOverride End of Support Windows Lifestyle Current Events Holiday Networking Encryption Printers Hacker Wireless Technology Windows 10 Data Storage Project Management Innovation Lithium-ion battery Mobile Recycling Digital Signage Smart Tech Compliance Legal Cameras Mobile Office Transportation Regulations Assessment Google Information Technology Criminal Online Currency Hybrid Cloud Public Computer Touchscreen Document Management Automation Quick Tips Unified Threat Management Hosted Solutions Cryptocurrency Unsupported Software Meetings Smartphones Computer Care Redundancy Employer-Employee Relationship Reputation Law Enforcement Work/Life Balance IT Management Hiring/Firing Augmented Reality Windows Server 2008 Devices Manufacturing Worker Commute Bluetooth Fraud Cloud Computing Google Apps Computer Accessories Windows 8 Vendor Laptop How to Digital Signature Humor Server People OneNote Alert Uninterrupted Power Supply IoT Tech Term Flash Business Computing Search Engine History Distribution Television Strategy Colocation Social Microchip Information Data Breach Solid State Drive Entrepreneur NarrowBand Experience Keyboard CES VoIP Users Cleaning Security Cameras communications User Error Customer Service Settings Multi-Factor Security Trending Emergency Employee Downtime Business Management Science Addiction PDF Business Owner Content Filter File Versioning Going Green Display Fax Server Printer

Sign up for our Newsletter!

  • Company Name *
  • First Name *
  • Last Name *