The most famous cyber stories of the past months.

The most famous cyber stories of the past months.

In January 2024, Microsoft disclosed that it had been attacked by the Russian group Midnight Blizzard, which gained access to some company emails and documents through seized accounts. In addition, the hackers gained access to some source code repositories and internal systems.
Midnight Blizzard gained access through a successful password spray attack (a brute force attack) on a legacy test account without multicomponent authorization.

Midnight Blizzard has been hard at work. In October 2024, they launched targeted spear-phishing attacks to more than 100 organizations worldwide. The emails sent out contained RDP configuration files, allowing attackers to connect to the targeted systems.

In 2023, global ransomware payouts exceeded $1 billion.
October 2024 saw the highest number of active ransomware groups in history.
This may suggest that police are doing better with old and well-known groups without dealing with the growing number of smaller groups. Unfortunately, AI is lowering the bar of entry for carrying out ransomware attacks.

In February this year, police took down the well-known LockBit group. Their ransomware was the most widely used worldwide in 2023.

In July, a hacking forum published the world's largest collection of passwords, containing 9,948,575,739 unique entries in plain text. The credentials were discovered in a file named “rockyou2024.txt.”

In April 2024, a certain group called ShinyHunters hacked into the Snowflake data storage platform. In July, AT&T revealed the leak of almost all of its customers' data from May-October 2022 and January 2023. AT&T reportedly paid 5.7 Bitcoin - about $374,000 in ransom to remove the stolen data.

CrowdStrike a U.S.-based company that provides cyber security, endpoint security services, threat analysis and cyber attack response, released an update to Falcon Sensor in July. The update triggered the shutdown of some 8.5 million Windows devices worldwide and employees saw a blue screen of death, or Windows crash warning.
CrowdStrike received the “Epic Fail” award at the Black Hat U.S.A. conference in August 2024 for this action.

National Public Data (a company that mines employee background checks) in August revealed the leak of 134 million unique email addresses and 70 million rows from a U.S. criminal records database.

Non-profitowa biblioteka cyfrowa Internet Archive zaliczyła poważne naruszenie danych z typu "odmowa usługi”. Atakujący włamali się do bazy danych SQL zawierającej informacje uwierzytelniające ponad 31 miliona członków i pobrali adresy e-mail, nazwy ekranowe, znaczniki czasu zmiany hasła i hasła haszowane za pomocą bcrypt.
W tym samym czasie grupa hakerska BlackMeta zaatakowała Internet Archive, trzema atakami DDoS.

W lutym grupa ALPHV nazywana też BlackCat włamała się do systemu Change Healthcare (dostawca usług zarządzania przychodniami) w ramach ataku ransomware i uzyskała dostęp do prywatnych informacji medycznych ponad 100 milionów osób. Firma zapłaciła okup w wysokości 22 milionów dolarów w Bitcoinach aby odzyskać skradzione dane.

16.12.2024

Midnight Blizzard, password spray, spear-phishing, ransomware, atak siłowy, atak siłowy, atak na wspomaganiu, cyberbezpieczeństwo, ataki hakerskie, ochrona danych, bezpieczeństwo IT, cyberzagrożenia, phishing, ransomware, malware, zabezpieczenia sieci, ochrona prywatności, audyt bezpieczeństwa, firewall, antywirus, szyfrowanie danych, zarządzanie ryzykiem, bezpieczeństwo informacji, cyberatak, ochrona systemów, naruszenie danych, haker, AI, sztuczna inteligencja, atak hakerski, cyberataki, kampanie phishingowe, złośliwe oprogramowanie, cyberprzestrzeń, zagrożenia cybernetyczne, wykrywanie anomalii, automatyzacja analizy zdarzeń, predykcyjne analizy, pomoc AI w ochronie przed cyberatakami, AI wspiera jednostki SOC, cyberpezpieczeństwo, attack on support, cybersecurity, hacker attacks, data protection, IT security, cyber threats, phishing, ransomware, malware, force attack, network security, privacy protection, security audit, firewall, antivirus, data encryption, risk management, information security, cyberattack, system protection, data breach, hacker, AI, artificial intelligence, hacker attack, cyberattacks, phishing campaigns, malware, cyberspace, cyber threats, anomaly detection, event analysis automation, predictive analytics, AI assistance in protection against cyberattacks, AI supports SOC units, cybersecurity, Angriff auf Support, Cybersecurity, Hackerangriffe, Datenschutz, IT-Sicherheit, Cyberbedrohungen, Phishing, Ransomware, Malware, Netzwerksicherheit, Datenschutz, Sicherheitsaudit, Firewall, Antivirus, Datenverschlüsselung, Risikomanagement, Informationssicherheit, Cyberangriff, Systemschutz, Datenleck, Hacker, KI, künstliche Intelligenz, Hackerangriff, Cyberattacken, Phishing-Kampagnen, Malware, Cyberspace, Cyberbedrohungen, Anomalieerkennung, Automatisierung der Ereignisanalyse, Predictive Analytics, KI-Unterstützung beim Schutz vor Cyberangriffen, KI unterstützt SOC-Einheiten, Cybersecurity,