XFER Blog

XFER has been serving Michigan since 1994, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

The Most Devastating Hacks of 2018… So Far

The Most Devastating Hacks of 2018… So Far

Network security is a crucial consideration for every contemporary business owner, as there are just too many threats that originate from an Internet connection to be overlooked. One only has to look at what businesses of all sizes have dealt with, even within this calendar year, to gain an appreciation for how crucial it is that every business owner consider their cybersecurity.

Here, we’ve assembled a few statistics and examples to illustrate just how serious the threat of cyberattack can be, hopefully inspiring you to prioritize your company’s network security. Consider these cybersecurity figures:

  • In 2017 over 130 large-scale breaches were reported, a 27 percent increase over 2016.
  • Nearly 1-in-3 organization have experienced some sort of cyberattack in the past.
  • Cryptojacking (stealing cryptocurrency) increased 8,500 percent in 2017.
  • 100,000 organizations were infected with the WannaCry ransomware (400,000 machines).
  • 5.4 billion WannaCry attacks were blocked in 2017.
  • The average monetary cost of a malware attack is $2.4 million.
  • The average time cost of a malware is 50 days.
  • Ransomware cost organization’s over $5 billion in 2017.
  • 20 percent of cyberattacks come from China, 11 percent from the United States, and six percent from the Russian Federation.
  • Phone numbers are the most leaked information.
  • 21 percent of files are completely unprotected.
  • 41 percent of companies have over 1,000 sensitive files left unprotected.
  • Ransomware is growing at 350 percent annually.
  • IoT-based attacks are growing at about 500 percent per year.
  • Ransomware attacks are expected to quadruple by 2020.
  • 7.7 percent of web requests lead to malware.
  • There were 54 percent more types of malware in 2017 than there were in 2016.
  • The cybersecurity market will be worth over $1 trillion by 2025.

If that wasn’t convincing enough, what follows is just an assortment of the attacks that 2018 has seen (as of July). To simplify things, we’ve organized them by the intended targets: public (like individuals and government bodies) and private (such as businesses):

Public
January

  • The Department of Homeland Security was affected by a data breach that exposed information about 247,167 current and former employees.

March

  • Atlanta, Georgia was targeted by a ransomware attack called SamSam. This resulted in a massive problem for their municipal infrastructure. The ransom price given was $51,000, but Atlanta’s leadership refused to meet these demands. Overall, the numbers show that Atlanta has spent more than 10 times that number in the fallout of the attack. Some estimates place the actual cost of this event at nearly $20 million.
  • India’s national ID database, Aadhaar, leaked data of over a billion people. This is one of the largest data breaches in history. A user could pay 500 rupees, equal to about $7, to get the login credentials that allowed anyone to enter a person’s 12-digit code for their personal information. For 300 rupees, or about $4.20, users could also access software that could print an ID card for anyone associated with the database.
  • Cambridge Analytica, a data analytics company that U.S. President Donald Trump used to help his campaign, harvested personal information from over 50 million Facebook users without asking for their permission. Facebook hasn’t called this a data breach, but Cambridge Analytica has since been banned from using the service thanks to this event.

June

  • A hack of a U.S. Government-funded active shooter training center exposed the personal data of thousands of U.S. law enforcement officials. This also exposed which police departments aren’t able to respond to an active shooter situation.

Private
January

  • 280,000 Medicaid records were exposed when a hacker attacked the Oklahoma State University Center for Health Sciences. Among the information exposed were patient names, provider names, and full names for affected individuals.

February

  • An unsecured server owned by Bongo International, a company acquired by FedEx, leaked over a hundred-thousand files of FedEx customers. Some of the information leaked included names, drivers’ licenses, national ID cards, voting cards, and utility bills.

March

  • Orbitz, a travel booking site, fell victim to a security vulnerability that exposed 880,000 customers’ payment card information. There was also about two whole years of customer data stolen from their server.
  • French news site L’Express left a database that wasn’t password-protected up for weeks, despite being warned about the security issues regarding this.
  • 134,512 records regarding patients and financial records at the St. Peter’s Surgery and Endoscopy Center in Albany, NY were accessed by hackers.
  • MyFitnessPal, an application used by Under Armor, exposed about 150 million people’s personal information to threats.
  • The WannaCry ransomware claimed another victim in Boeing, which stated that “a few machines” were protected by Microsoft’s 2017 patch.

May

  • Thanks to Twitter storing user passwords in a plaintext file that may have been exposed by internal company staff, the social media titan had to force hundreds of millions of users to change their password.
  • An unauthenticated API found on T-Mobile’s website exposed the personal information of all their customers simply through the use of their cell phone number. The following information was made available: full name, address, account numbers, and tax IDs.
  • A bug found in Atlassian development software titles Jira and Confluence paved the way for hackers to sneak into IT infrastructure of several companies and one U.S. government agency.
  • Rail Europe, a popular server used by American travelers to acquire rail tickets, experienced a three-month data breach that exposed credit card information to hackers.

June

  • A marketing company named Exactis had 340 million records stolen from it, but what’s most shocking about this is that they had accumulated information about nearly every American out there. In response to the breach, there was a class action lawsuit made against the company.
  • Adidas’s website was hacked, resulting in a loss of a few million users’ personal and credit card information.
  • A hacker collective called Magecart initiated a campaign to skim at least 800 e-commerce sites, including Ticketmaster, for sensitive information.

Clearly, if these lists are any indication, companies of all sizes need to commit to maintaining their network security, holding it to a higher standard. For assistance in doing so, you can rely on the professionals at XFER. We can design and implement security solutions to protect you from threats like these, and others that may rear their ugly heads. Give us a call at 734-927-6666 / 800-438-9337 to get started.

Is Email Actually More Trouble than It’s Worth?
How Much Have Smartphone Cameras Made a Difference...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Friday, February 22 2019
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Security Technology Tip of the Week Privacy Microsoft Internet Cloud Best Practices Saving Money Backup Workplace Tips Software Business Computing Managed Service Provider Hosted Solutions Hackers Data Small Business Google Mobile Devices Hardware Productivity VoIP Mobile Office Gadgets Malware Network Security Email Quick Tips Efficiency Network IT Support Innovation Business Management IT Services Social Media Business Business Continuity Smartphones Server Miscellaneous Upgrade Virtualization User Tips Communication Windows Disaster Recovery Communications Data Backup Computer Managed IT Services Microsoft Office Smartphone Data Recovery Users Passwords Browser Mobile Device Management Holiday Android Save Money Internet of Things WiFi Marketing Outsourced IT Ransomware Tech Term Alert Artificial Intelligence Vendor Management Cybercrime Mobile Computing Cloud Computing BDR Remote Monitoring Chrome Router Productivity Windows 10 Operating System Computers Automation Cybersecurity Bring Your Own Device Apple BYOD Information Technology Avoiding Downtime Telephone Systems The Internet of Things Collaboration Managed IT Services Current Events Health Best Practice Spam History Going Green Big Data Remote Computing IT Solutions Firewall VPN Phone System Hacking Wireless Technology Social Engineering IT Consultant Employer-Employee Relationship Proactive IT Printer Application Trending Facebook Bandwidth Lithium-ion Battery Money Mobile Device Office Excel Mobility Windows 10 App Budget IT Support iPhone Private Cloud Business Managament Training Mouse Office 365 Encryption Fax Server Content Filtering Applications Networking Maintenance How To Windows 8 Business Intelligence Two-factor Authentication Unified Threat Management Phishing Recovery Humor Data Protection Outlook Customer Relationship Management Blockchain Tutorials Hard Drives Save Time Redundancy Virus Word Law Enforcement Website Sports Value Data Security Gmail Apps Settings Antivirus Access Control Google Drive Managed IT PowerPoint Analytics Information User Error File Sharing Vulnerability Managed Service Conferencing Data Management Social Connectivity Inbound Marketing Office Tips Search Tablet Twitter Identity Theft Document Management Compliance Flexibility Administration Streaming Media Risk Management Entertainment Voice over Internet Protocol Tech Support Social Networking Digital Payment Computer Repair IT Management Retail Human Resources Servers Saving Time Scam Machine Learning Downtime Administrator Network Congestion Hacker Software as a Service Memory Analysis Wi-Fi Unsupported Software YouTube Display Computer Accessories Infrastructure Government Best Available Bluetooth Data Storage Meetings Paperless Office Update People Business Technology USB Keyboard Robot Work/Life Balance Data Breach DDoS Samsung Webinar Comparison Solid State Drive Telephony Workers Google Docs Virtual Assistant Windows 7 Black Market Online Currency Recycling Help Desk Touchscreen Botnet Point of Sale Cleaning Password Education Wireless Physical Security Healthcare Public Cloud Statistics Telephone System Data loss Credit Cards Instant Messaging SaaS Spam Blocking Programming Video Surveillance Environment Skype Smart Tech Data storage CES Running Cable Fraud Augmented Reality Intranet Biometrics IBM IT service IT Plan Internet Exlporer Wearable Technology Piracy eWaste PDF Net Neutrality Leadership Content Management HaaS End of Support OneNote Safety HVAC Security Cameras Scheduling Managing Stress Domains Telecommuting Restore Data Nanotechnology Remote Worker 3D Bloatware Tools Hosted Solution Debate Digital Signage Practices eBay Science Computer Care Sync Cables Reputation Search Engine Internet exploMicrosoft Accountants Windows Server 2008 Amazon Web Services Addiction Virtual Private Network Alerts Enterprise Content Management Employee/Employer Relationship Audit Software Tips Remote Work NarrowBand Backup and Disaster Recovery Wiring Entrepreneur Password Manager Netflix Uninterrupted Power Supply Google Search Hosted Computing Proactive Text Messaging Tablets Unified Communications Customers Students Bing Virtual Desktop Staff Advertising Gaming Console Hiring/Firing Root Cause Analysis Online Shopping Cache Project Management Work Station Windows Media Player Password Management Computer Fan Chromecast Devices GDPR Cost Management Supercomputer Business Mangement Distributed Denial of Service Files Shortcuts Data Warehousing Specifications IT Security ISP Inventory Remote Monitoring and Maintenance Upgrades Analyitcs Start Menu Theft Customer Service Digital Signature Notifications Print Server IoT Regulations Evernote Wireless Internet Warranty Colocation nternet Crowdfunding NIST Consultant FENG HBO Laptop Remote Support Thought Leadership E-Commerce Knowledge Travel Criminal Electronic Health Records eCommerce Patch Management Millennials Shadow IT File Versioning Line of Business Mobile Cortana SharePoint Cameras 360 Emails Multi-Factor Security Strategy Hybrid Cloud Law Firm IT Smartwatch Screen Mirroring Wireless Charging Company Culture Wire Microchip IaaS Computing Infrastructure Cryptocurrency Macro Webcam Licensing Electronic Medical Records Frequently Asked Questions Touchpad Content Filter Camera Vendor Co-managed IT WIndows 7 Windows 10s Workforce Legal Multiple Versions Authentication MSP Business Owner Virtual Reality Professional Services Google Apps Relocation LinkedIn Printer Server Shortcut Lifestyle Employee Insurance Charger Cast Flash Fiber-Optic Monitor Smart Office Safe Mode User Hiring/Firing Tip of the week Amazon Windows 8.1 Update Storage PC Care Worker Commute HIPAA Benefits Automobile Public Computer IT solutions Employer Employee Relationship CrashOverride Battery Smart Technology Video Games Books Loyalty Experience Two Factor Authentication Scalability Cryptomining Content Emergency Thank You Music Worker How to Audiobook Techology Congratulations Assessment Regulation Rootkit Politics Transportation Television Troubleshooting Webinar Utility Computing Printers

Sign up for our Newsletter!

  • Company Name *
  • First Name *
  • Last Name *