312-253-4321    Get SUPPORT

Alchetec Blog

Looking Back at This Year’s Cybersecurity Issues

Looking Back at This Year’s Cybersecurity Issues

Every business in operation today needs to have some kind of comprehensive network security. Simply put, there are too many threats that can come in through an Internet connection for them to continue doing otherwise. The past year provides plenty of anecdotal proof of this fact, as a quick glance back can show.

In order to demonstrate how crucial, it is to prepare your company’s security against cyberattack, we’ll begin with a few statistics:

  • In 2017 over 130 large-scale breaches were reported, a 27 percent increase over 2016.
  • Nearly 1-in-3 organization have experienced some sort of cyberattack in the past.
  • Cryptojacking (stealing cryptocurrency) increased 8,500 percent in 2017.
  • 100,000 organizations were infected with the WannaCry ransomware (400,000 machines).
  • 5.4 billion WannaCry attacks were blocked in 2017.
  • The average monetary cost of a malware attack is $2.4 million.
  • The average time cost of a malware is 50 days.
  • Ransomware cost organization’s over $5 billion in 2017.
  • 20 percent of cyberattacks come from China, 11 percent from the United States, and six percent from the Russian Federation.
  • Phone numbers are the most leaked information.
  • 21 percent of files are completely unprotected.
  • 41 percent of companies have over 1,000 sensitive files left unprotected.
  • Ransomware is growing at 350 percent annually.
  • IoT-based attacks are growing at about 500 percent per year.
  • Ransomware attacks are expected to quadruple by 2020.
  • 7.7 percent of web requests lead to malware.
  • There were 54 percent more types of malware in 2017 than there were in 2016.
  • The cybersecurity market will be worth over $1 trillion by 2025.

Just in case you still aren’t convinced, we’ve also taken the liberty of selecting a small portion of 2018’s cyberattacks, cutting them off at July. For simplicity’s sake, we’ve divided them based on the intended targets: public (including individuals and governing bodies) and private (covering the businesses).

Public
January

  • The Department of Homeland Security was affected by a data breach that exposed information about 247,167 current and former employees.

March

  • Atlanta, Georgia was targeted by a ransomware attack called SamSam. This resulted in a massive problem for their municipal infrastructure. The ransom price given was $51,000, but Atlanta’s leadership refused to meet these demands. Overall, the numbers show that Atlanta has spent more than 10 times that number in the fallout of the attack. Some estimates place the actual cost of this event at nearly $20 million.
  • India’s national ID database, Aadhaar, leaked data of over a billion people. This is one of the largest data breaches in history. A user could pay 500 rupees, equal to about $7, to get the login credentials that allowed anyone to enter a person’s 12-digit code for their personal information. For 300 rupees, or about $4.20, users could also access software that could print an ID card for anyone associated with the database.
  • Cambridge Analytica, a data analytics company that U.S. President Donald Trump used to help his campaign, harvested personal information from over 50 million Facebook users without asking for their permission. Facebook hasn’t called this a data breach, but Cambridge Analytica has since been banned from using the service thanks to this event.

June

  • A hack of a U.S. Government-funded active shooter training center exposed the personal data of thousands of U.S. law enforcement officials. This also exposed which police departments aren’t able to respond to an active shooter situation.

Private
January

  • 280,000 Medicaid records were exposed when a hacker attacked the Oklahoma State University Center for Health Sciences. Among the information exposed were patient names, provider names, and full names for affected individuals.

February

  • An unsecured server owned by Bongo International, a company acquired by FedEx, leaked over a hundred-thousand files of FedEx customers. Some of the information leaked included names, drivers’ licenses, national ID cards, voting cards, and utility bills.

March

  • Orbitz, a travel booking site, fell victim to a security vulnerability that exposed 880,000 customers’ payment card information. There was also about two whole years of customer data stolen from their server.
  • French news site L’Express left a database that wasn’t password-protected up for weeks, despite being warned about the security issues regarding this.
  • 134,512 records regarding patients and financial records at the St. Peter’s Surgery and Endoscopy Center in Albany, NY were accessed by hackers.
  • MyFitnessPal, an application used by Under Armor, exposed about 150 million people’s personal information to threats.
  • The WannaCry ransomware claimed another victim in Boeing, which stated that “a few machines” were protected by Microsoft’s 2017 patch.

May

  • Thanks to Twitter storing user passwords in a plaintext file that may have been exposed by internal company staff, the social media titan had to force hundreds of millions of users to change their password.
  • An unauthenticated API found on T-Mobile’s website exposed the personal information of all their customers simply through the use of their cell phone number. The following information was made available: full name, address, account numbers, and tax IDs.
  • A bug found in Atlassian development software titles Jira and Confluence paved the way for hackers to sneak into IT infrastructure of several companies and one U.S. government agency.
  • Rail Europe, a popular server used by American travelers to acquire rail tickets, experienced a three-month data breach that exposed credit card information to hackers.

June

  • A marketing company named Exactis had 340 million records stolen from it, but what’s most shocking about this is that they had accumulated information about nearly every American out there. In response to the breach, there was a class action lawsuit made against the company.
  • Adidas’s website was hacked, resulting in a loss of a few million users’ personal and credit card information.
  • A hacker collective called Magecart initiated a campaign to skim at least 800 e-commerce sites, including Ticketmaster, for sensitive information.

As these lists too clearly demonstrate, network security needs to be a priority for companies of every size and industry. If you’d like help with your security solutions, turn to the professionals at Alchetec. We have the experience and skill necessary to configure the protections that you and your business need. To get started, contact us at 312-253-4321.

Improving Your Collaboration Can Improve Performan...
Tip of the Week: 4 Ways Technology Can Benefit Bus...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Friday, December 14 2018

Captcha Image

Subscribe to Our Blog!

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Security Tip of the Week Technology Best Practices Cloud Business Computing Malware Privacy Hackers IT Services Network Security Email Outsourced IT Data Backup Software Managed IT Services Internet Data Hosted Solutions Productivity Productivity Tech Term Business Data Recovery Microsoft Computer Ransomware Innovation Backup IT Support Mobile Devices Business Continuity Cloud Computing Hardware IT Support Small Business Data Management User Tips Remote Monitoring Google Android Smartphone Internet of Things Browser Managed Service Provider VoIP Managed IT Disaster Recovery Communication Paperless Office Collaboration Efficiency Workplace Tips BYOD Smartphones Social Media Encryption Windows 10 Cybersecurity Mobile Device Managed IT Services Business Management Artificial Intelligence Windows 10 Applications Government Office 365 Facebook Wi-Fi Phishing Passwords Server Save Money Healthcare Document Management Tip of the week Upgrade Saving Money Infrastructure SaaS Antivirus Unified Threat Management Telephone Systems Bandwidth Compliance Vulnerability BDR IT Management Network Project Management Recovery Holiday Risk Management Politics Data Security Customer Relationship Management Router Virtual Reality Hosted Solution Windows Office Website IT Service Robot Work/Life Balance Storage Firewall Data loss Training Gmail Blockchain Employer-Employee Relationship App Wireless Managed Service Information Mobile Device Management File Sharing Virtualization Two-factor Authentication Scam Going Green Password Files Vendor Management Help Desk Regulations Data Storage Maintenance Money Word Chrome Unified Communications Twitter Virtual Private Network Microsoft Office Communications Health Smart Technology Business Technology Big Data Machine Learning Bring Your Own Device Remote Monitoring and Management Outlook Remote Computing Upgrades Customer Service Digital Payment HIPAA Computers Miscellaneous Electronic Medical Records Assessment Identity Theft Remote Workers Internet Exlporer Licensing IoT Tablet Patch Management How To Computing Mobile Security Alert Redundancy Network Management Automation Monitors Mobility How To Uninterrupted Power Supply Analytics Server Management Samsung VPN Quick Tips Apps The Internet of Things Chromebook Flexibility Proactive Test Sports Cortana Gadgets Data Breach Cyberattacks Physical Security Chatbots Cables End of Support Specifications Corporate Profile Data Warehousing Smart Tech Google Drive Printing IT Budget Managed Services Provider Business Growth Wearable Technology Enterprise Content Management Education Solid State Drive Employees Firefox Digital Employee-Employer Relationship Computing Infrastructure Management Statistics Office Tips SharePoint G Suite Cabling Meetings Social RMM Telephony Net Neutrality Cost Management Users Technology Laws Downtime Read Only Identity Mail Merge Computer Care WannaCry Microsoft Excel Connectivity Avoiding Downtime Techology Point of Sale Automobile Vulnerabilities Shortcut Software as a Service Taxes Hard Disk Drive Wires Zero-Day Threat Distributed Denial of Service Modem Lenovo Spyware Emoji Alerts Enterprise Resource Planning Bluetooth Downloads Instant Messaging WPA3 Operating System Hard Drive Heating/Cooling Unified Threat Management Unsupported Software IT Solutions Processors Address Legal Law Enforcement Time Management Disaster Resistance 3D Printing Spam E-Commerce USB IT Technicians Geography Display Technology Tips Backup and Disaster Recovery Managed IT Service Cookies Consultation Superfish Cooperation Mobile Dark Data Multi-Factor Security Disaster Finance Personal Information Social Engineering WiFi VoIP Fleet Tracking Tech Terms Update Cache Servers User Error Mobile Data Software Tips Bookmarks Social Networking Gadget Permissions Star Wars Proactive IT Apple Features Mirgation High-Speed Internet Mouse Human Error Break Fix Nanotechnology Monitoring Staff Company Culture Hacking Google Calendar Authentication Virus Search GPS Augmented Reality YouTube Asset Tracking Theft Hotspot Recycling Printer Favorites Black Friday Motherboard MSP Permission Fraud Utility Computing Touchscreen IT Consulting Tech Support Google Maps Electronic Health Records Black Market Migration Development Wireless Technology Comparison Dark Web Screen Reader Networking IBM Supercomputer Consulting Operations Managing Stress Trending Network Congestion Legislation Travel Safety Authorization Computer Repair Crowdsourcing Tracking Settings OneNote Financial Botnet Language eWaste Websites Humor Access Control Content Filtering Hacker History Conferencing Notifications Cyber Monday Mobile Computing Budget Cleaning Competition Motion Sickness Procurement IP Address Hacks Hiring/Firing Relocation Mobile Office Sync Printers Fun Domains Staffing IT Consultant CrashOverride Private Cloud Public Speaking Mobile Device Managment Administrator Presentation Regulation Hard Drives Error Cybercrime Lithium-ion battery Information Technology 5G Public Cloud Emergency Marketing