A group of stories on the most important information breaches, hacks, and busts in 2022 as outlined by a number of sources
It is a continuation of my sequence on Automating Cybersecurity Metrics.
In my final publish I used to be contemplating potential threats for a batch job authentication move. It’s all the time a good suggestion to evaluation what varieties of assaults are occurring to create acceptable defenses. I’ve spoken about this again and again in my displays, lessons, and this weblog. This publish takes a take a look at a few of the greatest assaults previously yr since we’re simply beginning out in 2023.
It’s clear from the listing beneath that the best way the “greatest” breach is measured varies however that breaches abound. Is the most important breach the one which uncovered probably the most information? Probably the most delicate information? How do you measure Microsoft supply code being stolen? Is it the breach that triggered probably the most financial loss? Or would a healthcare cyber assault that shuts down a hospital, leading to lack of life, high the listing? How about an assault on a authorities that causes them to lose a struggle if not defended in opposition to efficiently?
Among the breaches have byproducts that may’t be simply measured. One breach ends in entry to information in one other group. Stolen credentials or identities are bought later and end in id theft down the road.
Nonetheless you wish to measure cyber assaults, they’re one thing you wish to keep away from. I’m all the time reviewing the newest information breaches and making an attempt to tell my followers of one of the best methods to keep away from them.
These sources listing the next because the worst information breaches in 2022 beginning with the worst or generally in date order. Some are trade particular akin to monetary or crypto hacks. One vibrant spot is an inventory of a few of the greatest cyber crime busts in 2022.
After reviewing this listing, one of many breaches that stood out to me was the Oktapus breach which affected Twitter, Cloudflare, Sign and others. I’m going to discover that one in additional element within the subsequent publish.
Wired
Russia hacking Ukraine, Twilio and Oktapus, Los Angeles Unified College District, LAUSD, ransomware group and malware maker generally known as HIVE ransomware used to focus on over 1,300 organizations all over the world, leading to roughly $100 million in ransom funds from victims, Lapsus$ (Nvidia, Samsung, Ubisoft, and Microsoft, Okta, Uber, Rockstar), LastPass, Vanuatu, Twitter
Safety Journal
Medibank, LAUSD, Optus, DoorDash, Twilio, Uber, Twitter, Neopets
Cybersecurity Hub
Twitter, BidenCash (darkish internet market), Optus, WhatsApp, Medibank, Uber and Rockstar, Twitter, Nelnet Servicing (scholar mortgage information), SHEIN, Revolut
CRN
Neopets, AT&T, Money App, Beetle Eye, Flex Booker, Eye Care Leaders, elephatnt, OneTouchPoint, Lakeview Mortgage Servicing, LLC, Nelnet
American Banker (Monetary Breaches)
TransUnion South Africa, Revolut, Lending Tree, Money Categorical, First Monetary Credit score Union, Boeing Worker Credit score Union, Flagstar, Lakeview Mortgage Servicing, Elephant Insurance coverage Providers, Receivables Efficiency Administration
nira weblog
Okta, Uber, Cisco, Twitter, Rockstar Video games, Microsoft, Dropbox / Github repositories, LastPass, Quick Firm, Booz Allen Hamilton
Cybers Ghost VPN
Samsung, Optus, Twitter, Ronin Community, Credit score Suisse, Plex, Costa Rican Authorities, Trans-Union South Africa, Russian-Ukrainian Cyberwar, Crypto.com, Pink Cross, Uber, Open Sea (NFT Market), LastPass, Microsoft, Information Corp, Nvidia
Gizmodo (ordered by date, newest to most up-to-date)
Bunnings, Crypto.com, Nvidia, OpenSea, Medlab Pathology, E-Pal, SuperVPN, GeckoVPN, ChatVPN, Amart Furnishings, Deakin College, Neopets, American Airways, Cisco, Plex, College of Western Australia, Twilio, Sign, LastPass, Twitter, TikTok, The North Face, Uber, Rockstar, Optus, Get Revenge on Your Ex, Telstra, MyDeal, Vinomofo, Doomworld, Austrailian Defence, Harcourts, Abandonia, LJ Hooker
Safety Boulevard (by means of September, ordered by date)
Crypto.com, Pink Cross, Credit score Suisse, Lapsus$ Ransomware Assaults (Samsung, Microsoft Azure, Okta — solely two prospects, Globant, T-mobile), NYC Division of Training, Money App, Costa Rican Authorities, Twitter, Oktapus phishing assaults (Cloudflare, Twitter, Microsoft, T-Cellular and extra), Uber.
Fortune — 5 Greatest Crypt Hacks
Ronin Community, Wormhole Bridge, Nomad Bridge, Beanstalk Farms, Mango Markets
Decrypt — Greatest Crypto Exploits
FTX, Binance, Ronin, Wormhole, Nomad
Greatest Cyber Busts of 2022
Bitfinex couple, doxed Conti ransomware member, NetWalker, Sebastien Vachon-Desjardins of Quebec, James Zhong the Silk Highway hacker, Raccoon stealer operator, vendor of WhatsApp hacking tech, some Lapsus$ members, SSNDOB taken down, ex-Amazon engineer (this one was fairly apparent), REvil operator, youngsters linked to Uber and GTA hacks
Observe for updates.
Teri Radichel
In the event you appreciated this story please clap and observe:
******************************************************************
Medium: Teri Radichel or Electronic mail Record: Teri Radichel
Twitter: @teriradichel or @2ndSightLab
Requests companies by way of LinkedIn: Teri Radichel or IANS Analysis
******************************************************************
© 2nd Sight Lab 2022
All of the posts on this sequence:
____________________________________________
Creator:
Cybersecurity for Executives within the Age of Cloud on Amazon
Want Cloud Safety Coaching? 2nd Sight Lab Cloud Safety Coaching
Is your cloud safe? Rent 2nd Sight Lab for a penetration check or safety evaluation.
Have a Cybersecurity or Cloud Safety Query? Ask Teri Radichel by scheduling a name with IANS Analysis.
Cybersecurity & Cloud Safety Assets by Teri Radichel: Cybersecurity and Cloud safety lessons, articles, white papers, displays, and podcasts