Weekly Cybersecurity Recap September 30
Table of Contents
- By Steven
- Sep 30, 2022
During the second quarter of 2022, the world as a whole has seen 52 million reported data breaches, which is down by 56% from the previous quarter. The fact that 52 million is a decrease is incredibly concerning to many, most likely including you. The last few weeks have seen no shortage of breaches, and we're here to let you know about a few.
Facebook, now called Meta, has been sending confidential medical information to itself. Meta Pixel, an ad analytic software, has been using the information it gathers from hospital websites to send targeted ads to Facebook users. One woman said that after scheduling her doctor's appointment, she began to receive ads for her heart and knee conditions. Meta and two involved hospitals are being sued, and many other hospitals are quickly being drawn into the fray. 33 of the top 100 hospitals in the US have Meta Pixel on their websites, and only a portion of them have removed the software since the breach was discovered.
Nelnet is a corporation that provides student loans to college students all over the country. It recently suffered a breach that impacted over 2.5 million students. "Our cybersecurity team discovered a vulnerability believed to have led to this incident and took immediate action to secure the systems, block the suspicious activity, and fix the issue," said Nelnet. The stolen information included but was not limited to the students' names, phone numbers, and social security numbers. It offered 24 months of credit monitoring to the students affected, completely free of charge.
International video game development company 2K was hacked on September 20th, 2022. The hack occurred through a breach in the game-support branch of the company. The 2K support email began sending out messages to select players, alerting them that the company received their complaint tickets and would fix the issues. The hacker then added a link to a site that mimicked the 2K logins before sending a file that was said to fix their game. Once players opened the file, the malware was released onto the device. This particular malware is designed to access, identify, and steal personal information off the device. It will send it to the hacker, granting them access to virtually anything the victim had on their device.
Elbit Systems of America is part of an international company based out of Iran specializing in electronic defense systems. The information of 369 employees has been accessed by hackers, who claim to be the infamous Black Basta group. They put the company information on their TOR leak site but surprisingly only leaked about 350 employees' data when Elbit employs over 17,000 people. Regardless, Elbit is alerting all its employees about the breach and warning them to stay safe.
San Franciso 49ers
The San Francisco 49ers are the tenth oldest franchise in the NFL. They were breached sometime between February 6th and February 11th, 2022. The hacker group BlackByte has claimed responsibility for the hack, posting a synopsis of the organization on their blog. There was a time limit and a ransom of $530,000,000. The information of 20,930 people was released before the leak was stopped. The accessed data included the names and social security numbers of the individuals.