Weekly Recap September 2, 2022
Table of Contents
- By Steven
- Sep 01, 2022
Statista states several thousand breaches occurred in the first half of 2022 alone. This statistic shows that if you rest on your laurels by leaving your current digital defenses in place, your business might be the next to be victimized. Without further ado, let's recap the most notable recent cybersecurity attacks.
Crypto.com Struck by Hackers
Crytpo.com was attacked in yet another offensive against cryptocurrency platforms. The site was targeted in a nasty hack, leading to the exposure of 500 crypto wallets. Hackers compromised Crypto.com's two-factor authentication to perform the attack. However, the company provided few details about how hackers stole the crypto.
It appears as though the hackers manipulated browser tabs to access the crypto, stealing a total of $35 million of various digital currencies. Though Crypto.com deserves some credit for reimbursing customers after the attack, the fact that more and more cryptocurrency platforms are being breached is noteworthy.
OneTouchPoint suffered a significant data breach in which hackers illegally accessed its servers. Those servers contained health plans, member identification numbers, information patients communicated to doctors, full names, and more. The fact that millions of accounts were illegally accessed by hackers should not come as a surprise, as the company is an enormous enterprise.
Though OneTouchPoint initially insisted hackers illegally accessed only a million accounts in the attack, the actual numbers reveal more than 2.6 million accounts were accessed. This criminal act spurred a class action lawsuit filed by OneTouchPoint data/identity theft victims against the company for negligently failing to safeguard patients' sensitive and valuable information.
Agenda Ransomware Emerges
Healthcare institutions, educational institutions, business owners, business managers, and those who work for governmental organizations should all be aware of the emerging Agenda ransomware threat. The ransomware is primarily zeroing in on healthcare organizations and educational institutions.
The Agenda threat is still evolving, yet hackers used it in an offensive against public-facing servers owned by Citrix. This relatively early attack appears to be just the tip of the iceberg. Qilin, the hackers behind Agenda, carefully designed it to evade digital security protections. This emerging threat reinforces the importance of bolstering your cybersecurity safeguards as soon as possible.
Oktapus Zeroes in on 130 Firms
A new hacking campaign called Oktapus targets more than 130 firms. The threat is significant as it delves well beyond the United States; Oktapus is also targeting victims in more than 60 other nations. Twilio, Cloudflare, and several other high-profile businesses were victimized by the attack. The Oktapus attack is tied to phishing campaigns that compromised over 10,000 accounts. Furthermore, the campaign is also connected to Okta's identity/access management business.
The overarching aim of Oktapus is to collect MFA codes from compromised organizations and access company databases containing customer information. The campaign steals targets' phone numbers, email addresses, snail mail addresses, and other details for financial gain.
The stolen contact information sets the stage to transmit phishing links to the targets through text messages. Such links guide the targets to sites similar to Okta's authentication page yet are nothing but fake pages designed to steal information. The victims then type in their login credentials for Okta, pass through the multi-factor authentication process, and hackers obtain access to the account.