With an aggressive 2016, we had hoped 2017 to be a fresh and positive start for data security. In the year 2016, businesses witnessed more than 4,000 cyber attacks every day. This was an eye opening 300% increase from the year 2015, where only 1,000 attacks were seen a day. We have yet to see the data statistics for 2017, but with this roundup of the 2017 worse malicious security breaches so far, we might be seeing an increase in cyber attacks from 2016.
This roundup is based on data from the Breach Level index. This index provides a statistical approach to security breaches, by ranking a company based on its risk level and records breached. As we will see, security breaches continue to be a messy business. The below is based on the index’s rank and cyber security risk score, a 1.0 low risk to a 10.0 high risk, by known malicious outsider events. These security breaches encompass different countries and different industries.
Center for Education Systems at Kennesaw State University
In this voter records breach, the Center of Election Systems by the State of Georgia, United States and Kennesaw State University believed to have lost as many as 7.5 million voters records to a malicious outsider. In conjunction with the university:
“The center uses voter records to build electronic “poll books” used in precincts to verify voters’ names, addresses and registration status.”
Social security numbers are among the important information stolen in these data records.
American Joblink Alliance
4.8 million job seeker’s personal information has been stolen in a data breach by a malicious outsider at American Joblink Alliance. The business works with state governments to provide information to job seekers. A vulnerability was found in the application code that exposed records across as many as 10 American states.
Education Committee Hong Kong
The Chinese government has recently been ‘cracking’ down on data security, because the nations hosts a prime market of individual valuable assets that can be easily exploited. And they have been exploited, with one of Hong Kong’s largest data breaches in history this year. As many as 3.7 million voter ID card numbers, addresses, and mobile numbers were exposed when two Education Committee computers were stolen from a business facility.
Hacks and breaches are not just for the adult world. As many as 2.2 million email addresses and contact information was stolen during a malicious outside theft of a popular teen app called Wishbone. The vulnerability came from an unprotected online data trove, while many young users’, mostly women, personal information was stolen. This included 2,326,452 full names, 2,247,314 unique email addresses, 287,502 cellphone numbers, and other users’ personal data such as birth dates and gender. The app is ‘top ten’ in the United States’ Apple app store.
Data breaches aren’t only for medical hospitals, financial institutions and teen apps, they’re also seen in major music businesses like the music festival Coachella in Indio, California, United States. A recent malicious outsider breach resulted in as many as 360,000 accounts on the Coachella website to become compromised. This included compromised usernames, emails and passwords.
Another day, another healthcare ransomware attack. This attack is associated with Austin Texas healthcare provider called Urology Austin. As many as 279,663 patients were affected during a ransomware attack that included important information such as names, addresses, dates of birth, Social Security numbers, and medical information being stolen.
While you ate your curly fries and roast beef sandwich, you might have been exposed to a potential data breach. Arby, the American fast food chain, witnessed a breach of more than 355,000 credit and debit card information. Once malicious malware was installed on restaurant registers, attackers could secretly steal credit card data remotely, as it was swiped at the cash register. This point-of-sale attack is similar to other pernicious credit card data breaches at Target and Home Depot.
The online poker forum TwoPlusTwo started the new year with an impactful cyber attack and data breach. It was confirmed that all 400,000 members subscribed to the TwoPlusTwo website had important usernames, passwords, and email addresses extracted from their personal online profiles.
We’ve read countless news articles, online discussions and debates on the WannaCry incident, that’s had prolific effects on the globe. It’s recent, within the last month. This incident doesn’t just involve one business, or one industry like the others, rather this incident affected more than 200,000 computers in 150 countries, locking people out of their computers in a ransom attempt. Major businesses affected by this recent outburst include the UK National Health Care Service and Telefonica in Spain.
We’re halfway through 2017 and dangerous cyber attacks continue to rise. This list will continue to be updated as major cyber attacks become recorded.