January 2018: Hacks and Breaches

It’s been released that hackers stole £130bn from consumers in 2017, and that number is only predicted to rise in 2018. Hackers wasted no time and were off to a quick start in the new year, especially following their success in 2017. Let’s recap what hackers have been up to in January.

 

Anonymous Hacks Italian Speed Camera Database

As reported on the 2nd of January, hackers operating as part of the notorious hacking group Anonymous managed to remotely access and control a computer system belonging to Correggio, Italy’s local police. Once inside, the hackers erased the entire speed camera ticket database and released internal documents emails, and additional sensitive information to the media. The hackers sent screenshots of their work (along with the stolen data) to various Italian media outlets as proof.   

 

Hack Exposes 30,000 Medicaid Patients’ Info

On January 5th, it was reported that hackers might have accessed the medical records and other personal information of around 30,000 Medicaid recipients based in Florida. In a press release, the Agency for Health Care Administration announced that one of their employees fell victim to a phishing email attack in November, which is what led to the exposure of these sensitive files. Besides medical records, the hackers may have accessed victim’s names, addresses, birthdays, Social Security numbers, medical conditions and diagnoses.

 

Hackers Steal $400,000 in Lumens BlackWallet Theft

We all know that cryptocurrency is hot right now, and it’s no surprise that hackers are attacking the crypto-world from every angle. On January 16th, we learned that a DNS server which was connected to the domain of BlackWallet, a browser-based crypto-wallet, was compromised. Attackers targeted the Stellar Lumen cryptocurrency, and were able to steal approximately 670,000 Lumens by redirecting the DNS server to a server that belonged to the attacker.

 

Up To 40,000 Credit Cards Exposed in OnePlus Hack

OnePlus admitted on January 19th that it suffered a breach back in November and that up to 40,000 of its customers may have had their credit card information stolen. This news broke shortly after it was reported that hundreds of OnePlus customers discovered fraud on their accounts after making a purchase from the OnePlus website. After an investigation, OnePlus established that hackers had broke into its website server and managed to install malicious JavaScript code. The malicious code’s job was to grab credit card data once entered.

 

Top 500 UK Legal Firms Have Credentials Leaked on the Dark Web

A file dump containing nearly 1.2 million email addresses and credentials belonging to members of the UK’s top law firms was discovered by researchers on the Dark Web. A released on January 22nd, the total number email addresses and other data is 1,159,678 and it’s said that 80% of those emails were connected to leaked passwords (which happened to be stored in plaintext, in many of the cases). According to the researchers, the majority of the data breached was not stolen directly from the legal companies, rather the data was collected from various third-party data breaches that occurred over the past six months.

 

Bell Canada Suffers Second Hack in Eight Months

In May 2017, Bell was hit by a cybrattck which led to the theft of 1.9 million customer records. And now, the telecommunications company has been hit again with hackers making off with the personal information of about 100,000 Bell customers. Attackers are said to have stolen the names, addresses, phone numbers, account credentials, and more. No word has been released to whether credit card data was stolen, but the investigation is ongoing.

 

Keep scrolling to view our infographic showing January’s top hacks and breaches!

January: Top Hacks and Breaches

 

The following two tabs change content below.

Arden Rubens

Social Media Manager & Content Writer at Checkmarx
Arden is the social media manager and a content writer at Checkmarx. Her blogs focus on cyber security trends and the latest developments in the world of AppSec.
She aims to educate and inspire developers, security professionals, and organizations to find the best defense against online threats.

Stay Connected

Sign up today & never miss an update from the Checkmarx blog



This is a Security Bloggers Network syndicated blog post authored by Arden Rubens. Read the original post at: Blog – Checkmarx