Digital racketeering: which cyber attacks hit the world the most

[Carding Forum]

The mainstream of recent years in the world of cyber fraud is ransomware. Hackers enter the computer network and threaten to crash or delete files if they are not paid a ransom

The stress of the changes the pandemic has made has drawn our attention away from cyber threats. This, of course, was taken advantage of by the hackers. As cyber risk expert Cedric Neb notes in an article for Deloitte, 47% of people fall victim to online scams while working from home because they are not provided with the level of protection that covers the work environment. He cites data from the National Cyber Security Center, according to which 350 cases of cyber attacks (phishing, fraudulent websites, direct attacks on companies, etc.) were registered in Switzerland in April 2020, compared with the usual 100-150. In response to these threats, local institutions began to adapt technical innovations.

Among the hackers' tools are the use of ransomware, software that allows you to gain access to computer systems and disrupt or block them until a ransom is obtained. They also practice attacks on supply chains. Their essence is to slip malicious code or component into reliable software or hardware.

PaySpace Magazine has compiled the most famous cyberattacks of various kinds that have shaken the world.

Jp morgan​

The 2014 JP Morgan data integrity breach is one of the largest attacks in history, affecting tens of millions of people and seven million businesses - a total of 83 million customers. Five people used malware, social engineering and phishing to steal email content, addresses, phone numbers and other customer information from not only JP Morgan, but also related financial institutions.

The hackers had little experience in cybercrime. However, they were able to create a sophisticated stock fraud scheme, having seized more than $ 100 million. Interestingly, in those years JP Morgan invested in information security in good faith. However, all of this expense came to naught through a single server that was not updated with two-factor authentication.

Colonial Pipeline​

In May 2021, the operators of the colonial pipeline that runs from Houston to the southeastern United States were attacked by ransomware hackers on key components of the computer software used to operate the pipeline. During the attack, more than 100 GB of corporate data were stolen in just two hours. As a result, the pipeline, which supplies nearly half of the East Coast's fuel needs, has been shut down, leading to a shortage of gas stations in 17 states. The FBI has identified a group of cybercriminals DarkSide behind the attack. The company paid a ransom worth about $ 5 million in exchange for the decryption key. It was the largest attack on oil and gas infrastructure in US history.

Anthem​

In 2015, hackers took possession of 78.8 million records of one of the largest US health insurers Anthem. Specifically, the attackers obtained names, social security numbers, birthdays, addresses, emails, patient employment information, and employee salary data. The hackers entered the system through an email scam known as spear phishing, which involves sending out personalized emails. The data was stolen for several weeks, a month before the attack was discovered. Anthem faced several civil suits that were settled in 2017 for $ 115 million. In September 2020, the company said it would pay $ 39.5 million as part of an agreement with US attorneys general. However, they added that the investigation by the FBI and the security organization FireEye Inc.

Equifax​

From May to July 2017, cyber attackers gained access to 145.5 million data files stored by Equifax, a consumer finance agency. This information included names, social security numbers, credit card details, dates of birth, addresses, and driver's license numbers. The hackers got into the system by stealing analytics from third-party e-commerce service providers working with Equifax.

The company was first broken through a web-based consumer complaint portal, and the attackers exploited a known vulnerability that needed to be fixed, but due to a glitch in Equifax's internal processes, this was not done. The main version: the attack on Equifax was carried out by Chinese hackers with the aim of espionage rather than theft.

Kaseya​

The attack, which infected Kaseya's popular VSA software product, was used to spread malware to dozens of the company's customers. Among them were many firms that help small businesses and government agencies with IT tasks. In total, hundreds of companies were affected in at least 17 countries. The cybercriminal gang behind the attack, the REvil group, asked for $ 70 million in exchange for a "universal decryptor" that would unlock all infected files.

SolarWinds​

In early 2020, hackers secretly infiltrated the systems of the Texas-based technology company SolarWind and added malicious code to Orion's software system. It is widely used by firms to manage IT resources. Starting in March 2020, SolarWinds sent out software updates to its customers that included broken code. Thus, about 18 thousand firms have installed harmful renewal. In total, hackers have been confirmed to have infiltrated 12 federal agencies, including the Department of Defense, Department of Homeland Security, Federal Aviation Administration, the judiciary and NASA. The hackers also made their way to the networks of large Fortune 500 companies.

CNA​

One of the largest American insurance companies paid $ 40 million to cybercriminals who blocked access to the company's network and stole its data. According to CNA, the cyberattack did not affect the accounting, claims and underwriting systems where most of the insured's data is stored. Cybersecurity experts believe that the hackers used the Phoenix Locker virus, a variant of the Hades malware developed by the Russian Evil Corp. to hack.

JBS​

To decrypt its data, the Brazilian meat processor was forced to pay hackers associated with the aforementioned REvil group $ 11 million. The payment was made using bitcoins. The attack forced the company to stop slaughtering at 13 of its meat processing plants in Australia, Canada and the United States. This could cause a collapse in food supplies and a rise in food prices for consumers.

Dusseldorf Clinic​

The world's first death due to a hacker attack occurred last fall. The University Hospital Dusseldorf was unable to admit the patient due to the ransomware virus blocking her computer system. As a result, one of the patients, who required an urgent operation, had to be transported to another city, 32 kilometers from Dusseldorf. She died on the way.