Introduction

Cybersecurity is not only essential but a must for every business. Amidst the ever-changing cyber warning environment, it has become crucial for the company to put in a cybersecurity program. Everyday cybersecurity center puts a new incident affecting millions of users. So, we need to know about these Cybersecurity incidents. Recently many new things have taken place almost everything has changed – the way we used to our lives and our day-to-day activity majorly because of the Covid-19 pandemic, the usage of the internet, and the cybersecurity incidents have grown remarkably.

Here are some of the most notable, adverse cybersecurity incidents that happened across the globe mentioned in the article

  1. MGM Hotel
  2. California University
  3. Adobe 
  4. Canva
  5. Dubsmash
  6. World Health Organization (WHO)
  7. eBay

List of cybersecurity incidents 

1. MGM Hotel

In this incident, the personal details of more than 10 million guests stayed at MGM resorts hotels was oozed. The information gathered contains names, phone numbers, addresses, birth dates, and mail addresses of guests varying from tourists to many known personalities to government workers. The information drooled was published openly.

The cybersecurity incident happened in February 2020. When the mishappening was acknowledged, MGP informed the individuals about the stolen information.

2. California University

The incident took place at the University of California, San Francisco. The hackers infected the system and demanded $3 million to release the university system. The company contracted the payment amount and paid 1.14$ million because the information drooled was crucial to the university. Hackers seeped into the university’s systems through a virus that encoded multiple servers. Later the officials announced that no information imperilled.

3. Adobe 

In this incident, Adobe summarised that Criminals had seized around 3 million inscribed customer credit card credentials, login data of user accounts. Abode put that nearly 38 million existing users IDs and passwords were encrypted. Later researchers detected that hackers had also leaked customer names, IDs, password and debit and credit credentials. This incident happened in the year 2013

In a contract, Adobe had to pay $1.1 million in sanctioned fees to customers to resolve claims of disrupting the Customer Record Act and unfair business practices. In the year 2016, the amount expended to clients was about $1 million.

4. Canva

Australian graphic design tool website Canva underwent an incident that leaked mail addresses, usernames, names, cities, vault passwords. Canva published that hackers contrived to view, however, failed to steal records with credit credentials and payment data. The culprits were known as Gnosticplayers. The criminal also stated to have OAuth login credentials for users who logged in via Google.

The company settled the incident and finally notified users, aided them to change their login credentials, and reset OAuth tokens. According to a post by Canva, a list of almost 4 million Canva accounts holding stolen user passwords was cracked and shared online, leading the company to eliminate unchanged passwords and inform users with unencrypted passwords in the list.

5. Dubsmash

In this incident Dubsmash, a video messaging service had 162 million email addresses, usernames, passwords, and other personal information such as birth dates stolen, everything cached up for sale on the Dream Market dark web market. The data sold as part of a collected dump and the likes of MyFitnessPal, MyHeritage, ShareThis, Armor Games, and dating app CoffeeMeetsBagel.

Dubsmash conceded the violation and sale of information had happened and advised to change passwords — but unable to find how the attackers hacked or how many users got affected.

6. World Health Organization (WHO)

One of the shocking incidents of this year, data drooled from one of the crucial organizations. Around 25,000 mails and passwords drooled online of various groups striving to fight the covid-19 pandemic, including the WHO, NIH, the US Centers for Disease Control and Prevention (CDC), and the Gates Foundation.

Afterwards, the WHO publicly validated that some personal credentials belonging to its staff drooled. The data stolen was not new, and hence, the data violation did not cause any risk to the organization. It did not even publish how the attackers invaded the information. 

Afterwards, WHO stated they were transferring the information of the affected system to a more guarded one. The incident took place in April 2020.

7. eBay

eBay published that an attack unveiled the entire account data of 145 million users comprising names, addresses, birth date, passwords. officials said that hackers used the private credentials of majorly three corporate employees to obtain its network and had the complete access for legit 229 days ample time to compromise the user database.

The company informed its users about the incident and asked them to change their login credentials. However, the credit card and other financial details were not compromised. The company faced criticism because of the communication gap and inadequate implementation of the login credentials restoration method.

Conclusion

There are abundant cybersecurity incidents happen every day in all sectors of business and several other ways. 

So, it has become crucial for all the businesses to have security systems, monitor the updates regularly, Identify the faults and try to work on them promptly to guard your systems.

So, have you made up your mind to make a career in Cyber Security? Visit our Master Certificate in Cyber Security (Red Team) for further help. It is the first program in offensive technologies in India and allows learners to practice in a real-time simulated ecosystem, that will give you an edge in this competitive world.

Also Read

SHARE
share

Are you ready to build your own career?