Six Cyber Attacks That Shook 2017

Even as the world is moving towards a life more digital than ever before, the threats associated with the digital world are multiplying manifold, threatening to disrupt life as we have now come to know it. 

Cyber attacks are nothing new, but their increasing number and growing potency have become causes for concern for governments all over the world. There has been a marked increase in the amount of information getting stolen online every day.

Add to this mix a secret ingredient called Crypto-currencies and you have a potential Hindenburg on your hands. Crypto-currencies are very useful for making discreet transactions and have the added benefit of increasing in value exponentially, which makes them very valuable to cyber criminals.

It is estimated that the total damage on account of various ransomware attacks this year might be in excess of USD 5 billion. It is also estimated that this cost will only increase exponentially over the next 5 years, while the cost of cyber security will correspondingly amount to USD 1 trillion dollars in the next four years.

Here’s a quick look at some of the most brutal cyber-attacks this year:

Shadow Brokers
This anonymous group of hackers first surfaced in August 2016 when they breached the spy tools of a National Security Agency (NSA)-led program known as the Equation Group. However, the group’s most impactful release came in April 2017 - a trove of NSA tools, including a windows defect called EternalBlue (NotPetya and WannaCry hackers have since exploited this defect to infect targets with ransomware). The tools were auctioned off on the dark web.

WannaCry
The most infamous ransomware attack of 2017 was a strain of ransomware called WannaCry that spread all over the globe.
The ransomware targeted numerous public utilities and large corporations, most notably National Health Service hospitals and facilities in the United Kingdom, hobbling emergency rooms, delaying vital medical procedures, and creating chaos for many British patients.Though the origin of WannaCry is not yet known, the US government has blamed the Kim Jong-un-led North Korean government for initiating the attack.

Petya/NotPetya
Another dangerous malware that affected people across the globe this year was NotPetya. The malware, which bore many similarities to the 2016 ransomware Petya (hence ‘NotPetya’), began spreading to computers around the world, including those belonging to corporate giants like the US-based pharmaceutical company Merck, Danish shipping company Maersk, and Russian oil giant Rosneft.The ransomware hit Ukrainian infrastructure particularly hard, disrupting utilities like power companies, airports, public transit, and the country's central bank. India was affected the most by NotPetya in the Asia-Pacific and region and was the seventh most affected globally, according to the cyber security firm Symantec.

Zomato Hack
This one principally affected India. Zomato, which is one of the largest restaurant aggregators in India, was hacked and some of its user accounts were being sold on the dark web. A post on a blog called Hackread cited how accounts of 17 million users were being sold on the dark web. The vendor had also shared a trove of sample data to prove that the data is legitimate. Luckily, as Zomato stores its user’s payment details at a separate location, none of the users encountered a financial loss.

The HBO Hack
Game of Thrones is easily the most popular television show to hit the screens in the last decade, maybe more. Everyone loves it, everyone wants more of it, and most of all, everyone wants to be associated with it. This held true for a bunch of hackers too. In July 2017, hackers claimed to have acquired 1.5 terabytes of data from HBO, which is the producer of the show, and released yet-to-be-aired episodes of shows like Ballers and Room 104 online. But HBO did not truly feel the heat of this attack before it became known that the script for Episode 4 of Season 7 of Game of Thrones, which was scheduled to be released the following week, was put up online for the whole world to see. This was followed by a series of threats and ransom demands to HBO, which if not met would result in the leaking of more episodes of the popular show. The details of the ransom demanded by the hackers have been kept top secret and HBO refused to comment on whether it paid the ransom or not.

Equifax
In July this year, a group of hackers penetrated Equifax, one of the largest credit bureaus in the world, and stole personal data of 145 million people.The Equifax breach is considered one of the worst incidents of hacking ever because of the sensitivity of information stolen,  which included credit card numbers, birthday details, social security numbers. The information could easily be used for identity theft or misrepresentation.The company drew a lot of flak after it took two months to reveal that a breach had taken place. 

The Equifax breach raised concerns over the amount of information data brokers collect on consumers, which can range from public records to mailing addresses, birth dates and other personal details.

Money Control

You Might Also Read: 

Equifax Executives Resign Without Charge:

Postmortem: WannaCry Ransomware Explained:
 

« British IT Bosses Fear Sophisticated Cyber Threats
FBI Fingerprint Software Might Contain Russian code »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Get Cyber Safe

Get Cyber Safe

Get Cyber Safe is a national public awareness campaign created to educate Canadians about Internet security and the simple steps they can take to protect themselves online.

ContentKeeper

ContentKeeper

ContentKeeper provides Web Threat Protection solutions to secure today’s Web 2.0 and mobile centric business environments.

Silverskin Information Security

Silverskin Information Security

Silverskin is a cyber attack company that specializes in having knowledge of the attacker's mindset to identify vulnerabilities and build effective and persistent defences.

SteelCloud

SteelCloud

SteelCloud has spent the last decade inventing technology to automate policy compliance, configuration control, and Cloud security.

e-Crime Bureau

e-Crime Bureau

e-Crime Bureau is a specialized company offering cyber/computer forensics, cyber security consulting services, forensic audit and investigations services and training to clients across Africa.

Entel CyberSecure

Entel CyberSecure

Entel CyberSecure is a portfolio of Cybersecurity solutions and services for the protection, defense, risk management and regulatory compliance of ICT Systems for corporations and Government.

Trusted Objects

Trusted Objects

Trusted Object's mission is to provide state of the art security solutions and services enabling a strong root of trust for the IoT ecosystem.

Cyber Talents

Cyber Talents

CyberTalents is on a mission to close the gap of cyber security professionals shortage across the globe.

Zeusmark

Zeusmark

Zeusmark are a digital brand security company. We enable companies to successfully defend their brands, revenue and consumers online.

Blue Hexagon

Blue Hexagon

Blue Hexagon is a deep learning innovator focused on protecting organizations from cyberthreats.

TechDemocracy

TechDemocracy

TechDemocracy are a trusted, global cyber risk assurance solutions provider whose DNA is rooted in cyber advisory, managed and implementation services.

Periculus

Periculus

Periculus makes managing digital risk simple. Its integrated platform offers access to purchase cyber insurance and cyber security solutions uniquely tailored to fit the needs of every business.

Dr Web

Dr Web

Since 1992 the Russian anti-virus Dr.Web has been helping companies to keep their digital assets protected and operate in a secure digital environment.

Triaxiom Security

Triaxiom Security

Triaxiom Security offers penetration testing, security audits, and strategic consulting customized to meet your needs.

eaziSecurity

eaziSecurity

eaziSecurity has built an eco-system of technology and services that bring enterprise scale security solutions to the SME marketplace.

TriCIS

TriCIS

TriCIS design and engineer highly secure integrated solutions that meet the highest government and military security standards, providing information assurance to organisations across the globe.