Better put fraud alerts on your credit reports just in case
To find out if your info’s on the dark web go to haveibeenpwned .com
Ticketmaster Hacked, Information Stolen From Over Half A Billion Users
The group, called ShinyHunters, is attempting to sell the 1.3 terabyte-sized data file online for a one-time $500,000 fee, to anyone who wants it.
www.fastcompany.com/91133459/ticketmaster-hack-hackers-claim-to-steal-data-of-560-million-users
There’s been to many “data breaches”. 2023 went down as record breaking for it.
According to the Identity Theft Resource Center, there were 3,205 reported data breaches in the United States in 2023, which is a 78% increase from 2022 and a 72% increase from 2021. These breaches affected over 353 million people, including those who were impacted by more than one breach.
January of 24 was the MOAB mother of all breaches
What are the 26 billion records breached?
The 2024 massive breach, known as the Mother of All Breaches (MOAB), encompasses many data types, including usernames, passwords, and sensitive personal information. This vast repository of compromised data poses significant risks to individuals and organizations, as cybercriminals can exploit it for various malicious purposes, such as identity theft, phishing schemes, and targeted cyberattacks.
What sites are affected by the Mother of All Breaches?
According to a report by TrendMicro, the sites affected by the Mother of All Breaches (MOAB) in January 2024 include:
Tencent QQ with 1.4 billion records compromised.
Weibo with 504 million records compromised.
MySpace with 360 million records compromised.
Twitter with 281 million records compromised.
Deezer with 258 million records compromised.
LinkedIn with 251 million records compromised.
Adobe with 153 million records compromised.
Canva with 143 million records compromised.
Dropbox with 69 million records compromised
This list is not complete, which illustrates the diverse range of sources and countries affected by the breach.
Is this the biggest breach in history?
The MOAB breach is estimated to involve over 26 billion records, potentially including duplicates from prior breaches. That equates to 12 terabytes of data, making it significantly larger than previous breaches.
Recent High-Profile Company Data Breaches
American Express: March 2024
An undisclosed number of American Express customers were notified of a potential breach of their data at the beginning of March 2024. In a statement, American Express announced the incident stemmed from unauthorized access to a third-party merchant processor, rather than their own internal systems.
Customers were informed that their names, account numbers, and card details may have been compromised in the breach, and were urged to monitor their accounts for fraudulent activity over the following 12 to 24 months. American Express users have also been encouraged to enable real-time notifications to alert them to unusual purchases or transactions.
International Monetary Fund: March 2024
The International Monetary Fund (IMF) confirmed a cyber incident was detected in February 2024 in which 11 email accounts were compromised. In a brief statement, the organization said they worked with cybersecurity experts to investigate the breach and re-secure the affected accounts. It concluded:
“The IMF takes prevention of, and defense against, cyber incidents very seriously and, like all organizations, operates under the assumption that cyber incidents will unfortunately occur. The IMF has a robust cybersecurity program in place to respond quickly and effectively to such incidents.”
Roku: March 2024
Roku, a television streaming platform used by 80 million customers, experienced a cyber attack affecting 15,000 account holders early this year. The company claimed hackers had “likely obtained certain usernames and passwords of consumers from third-party sources… It appears likely that the same username/password combinations had been used as login information for such third-party services as well as certain individual Roku accounts.”
The attack highlights the dangers of password reuse across multiple platforms, as Roku customers were locked out of their accounts and attackers attempted to fraudulently purchase streaming subscriptions. Roku assured customers that their social security numbers, full account numbers, and personal information remained uncompromised in the attack, but urged users to reset their accounts and passwords.
U-Haul: February 2024
U-Haul began informing 67,000 customers of a data breach in February 2024, although the data in question is believed to have been compromised in December 2023. Unauthorized access to a reservation tracking system allowed attackers to view US and Canadian customers’ names, dates of birth, and driver’s license numbers. No financial information was accessed, however.
U-Haul stated that legitimate credentials were used to access their system, but they did not reveal how the attackers acquired the login details. The company has since changed customers’ passwords and offered free identity protection services to affected users.
High profile companies in 23 find below
www.electric.ai/blog/recent-big-company-data-breaches
More 23s high profile companies such as
Verizon
T-Mobile
23&me
MailChimp
Chatgpt
More
nordlayer.com/blog/data-breaches-in-2023/
Updated data breach for 24 so far
tech.co/news/data-breaches-updated-list
h/t Phennommennonn