In accordance with the
most recent statistics from the Identity Theft Research Center, during the
third quarter of 2022, the majority of victims grew by a staggering 210%. In
the United States, the number of victims per data breach reduced at the
beginning of the year, suggesting that enterprises with an extensive client
base may be better at protecting their data than in the past.
Top Data Breaches in 2022
Here are the top security
breaches that occurred in 2022.
1.
crypto.com
In January 2022, crypto.com was the victim of an attack. The attackers stole an estimated $33.7 million in tokens from users of the centralized exchange. The attacker identified a vulnerability in crypto.com and extracted 4,836.26 ETH ($15.2 million) and 443.93 BTC ($18.6 million) from the accounts of 483 Crypto.com users.
2.
Red Cross
A cyber attack on the International Committee of the Red Cross (ICRC) jeopardized the personal information of over 515,000 highly vulnerable individuals. The attack affected the ICRC program and involved the American Red Cross for the Restoring Family Links program.
3.
Neopets
During the summer of 2022, Neopets, a well-known website where users can create and care for virtual pets, had a data breach that impacted 69 million Neopet customers. The company became aware of the breach when a hacker offered to sell a database containing Neopets information for four bitcoins.
4.
Twitter
A database containing information on over 200 million Twitter users was uploaded on a prominent hacker forum around the start of January 2023. In December 2022, following ransom attempts and breaches, a goldmine of data of over 200 million Twitter users was leaked among hackers.
5. Norwood clinic
In March 2022, a cyberattack on Norwood Clinic compromised data tied to 228K patients. Attackers' compromised data varies by the patient; it includes the affected patient's name, address, contact information, date of birth, social security numbers, etc.
6.
Samsung
In 2022, the smartphone giant Samsung was breached twice, in March and August. During the initial hack, 200 terabytes of proprietary data, including Galaxy device source code, were acquired. The attackers obtained customer data in the second cyber attack, including name, contact and demographic information, date of birth, and product registration information.
7.
Beetle Eye
Beetle Eye, an email marketing tool, suffered a severe breach due to a misconfigured AWS S3. Security researchers found that the breach left the company's Amazon S3 bucket open, potentially exposing sensitive data belonging to roughly 7 million individuals.
8.
Puma
A renowned German multinational firm Puma suffered from a data breach following Kronos ransomware attacks. In this attack personal information of many employees was compromised.
About InfosecTrain
The primary goal of any
cyber attack is, and always will be, to acquire sensitive information about the
target and then use it for malicious means.
To prevent these data breaches, improve security. If you want to gain more knowledge about data breaches, check out InfosecTrain. InfosecTrain provides a variety of cyber security certification training courses that cover all the topics required to prevent these data breaches.