Bitium, a cloud-based IAM solutions provider focused on small-to-medium sized businesses, has a nifty infographic over at re/code that lists out all the major hacks and breaches from last year. As if you needed more encouragement for an IAM solution. In any case, here are the hacks:
1. Skype
A hacktivist group upset with Skype’s privacy policies takes over the company’s social media accounts and posts brand damaging content. Skype’s head of marketing has their work cut out for them.
2. Snapchat
Hackers expose back-end security weakness in the app and publish the partial phone numbers of 5 million users.
3. Forbes
Forbes.com hacked, over 1 million log in credentials stolen and fake news stories posted for icing on the blackhat cake.
4. Naver
The South Korean search portal’s hacking resulted in 25 million users having their names, internet IDs, passwords and addresses stolen, allowing the hackers to use those accounts to send spam and other nasty things with the goal of turning a profit.
5. Michael’s Retail
Michael’s PoS system hacked, around 3 million credit and debit cards stolen. Lots more criminally derived profit.
6. AOL
Tens of millions of accounts were “affected” by hackers sending malicious, malware filled emails to AOL users utilizing stolen credentials.
7. eBay
The corporate network was hacked, and cyber thieves made off with a customer database consisting of 145 million accounts, including names, login info, and more.
8. Code Spaces
The code-hosting and project management tool was put out of business permanently after a multipronged attack that started with a DDOS, morphed into an extortion attempt and ended with the hackers breaching the company’s Amazan Elastic Cloud control panel and permanently deleting all customer and backup data. Having nightmares yet?
9. Stubhub
1,600 user accounts stolen, used to buy and resell major sporting events tickets after hackers scraped credentials from 3rd party sites and found Stubhub accounts where those credentials were reused.
10. JPMorgan
Hackers stole administrative credentials, used them to access a server that lacked two-factor authentication, and used that to raid about 100 servers containing information on the accounts of 76 million households and 7 million small businesses.
11. Community Health Systems
Chinese hackers used malware to steal the HIPAA records of 4.5 million patients, including SSNs, phone numbers, names and birth dates.
12. Home Depot
A 5 month malware attack on the company’s PoS system resulted in 56 million credit and debit cards to have their info stolen.
13. US Postal Service
800,000 employees’ data snatched after the USPS’s computer network was breached.
14. Sony
Suspected North Korean hackers use malware to access internal computer networks, steal unprotected yet critical admin credentials and the proceed to leak the personal data of 47,000 Sony employees as well as the IP for several Sony movies/scripts in attempt to get Sony to cancel the release of The Interview. As a result, everyone pays to go watch a movie that would have bombed otherwise.
Doug Atkinson
An entrepreneur and executive with a passion for enterprise technology, Doug founded Solutions Review in 2012. He has previously served as a newspaper boy, a McDonald's grill cook, a bartender, a political consultant, a web developer, the VP of Sales for e-Dialog - a digital marketing agency - and as Special Assistant to Governor William Weld of Massachusetts.
- Yahoo Goes Passwordless to Access Account Services - April 6, 2015
- The Identity of Things Could Streamline Government Services - March 30, 2015
- The Third-Party Threat: Are You Safe? - March 18, 2015
