Hello.
Before you read on, which breach from the following was number one? Yes, you’ll have to guess first, but you don’t need to contact me, just guess and then see if you’re right.
Bleeping PC does link to all of their stuff, so I won’t link here to them.
The Internet Archive
The Internet archive was targeted as their 14th item as they start from 14 to 1. We’ll go ahead and do the same. This was an interesting attack as two actors were involved in this, yet we don’t know if any ransom was ever paid. We do know that at least 6TB of data was taken, but that’s about all.
Bad CrowdStrike Update
Probably one of the biggest stories we’ve ever covered, it crashed about 8.5 million PCs around the world. Microsoft had to make changes which forced AntiVirus Vendors to do the same as it came to Kernel drivers that run within the operating system.
Kaspersky
being replaced
This was the beginning of my thoughts on the stupidest thing the United States has ever done. This blog post came up after it was announced that they had no choice and I actually don’t blame people for being mad that they had different software installed without their permission. But according to Bleeping Computer, Kaspersky did notify people. This is my blog post about that situation. Regardless, while not a Cyber Threat, we know that this was a bad move, and TSB’s people definitely agreed. This should not be number 12 in my book, this should be a lot higher. Only time will tell what people think. How’s Ultra AV treating you if you were affected? Is it accessible if you were using Kaspersky? Was Kaspersky accessible for you? Sound off!
Microsoft Corporate Email breached
This should not be 11th in the list. Lots of people use Microsoft platforms and this could affect tons of folk. The fact that only corporate email was targeted should be a warning sign for folk using Outlook, Hotmail and Office 365. Microsoft wasn’t prepared for this one, were they?
National Public Data
This is the first blog post and this is our second post talking about the breach. Who the hell is this fucking company again? Oh yes, they’re one of hundreds of companies just collecting our data to sell it to the highest bidder. No wonder Kim is touting services to get you removed from these places. This was just one company.
Edge Router attacks
Many manufacturers were hit with this problem with edge attacks. I don’t know if we covered this, but you can read the article for complete details.
CDK
This was a big deal. We even talked about it This affected so many people that wanted to buy cars that it was quite interesting.
Snowflake
Why was this number 7 on the list? I believe this should be the first. The fact that 165 companies were pilfered through credential stuffing attacks is bad enough to be number one.
The IT worker scheme
This was quite interesting, seeing that Knowbe4 was involved. The fact that they believed whatever it was is something else, because they did everything correct as far as I am concerned. It was just believeable and it can hapen to anyone. That’s why they were given a computer with little privelages to start with. I think Knowbe4 did everything right with the ability they had.
The rest of the list
United Healthcare, one of the biggest providers of health services was fifth.
LockBit being disrupted was 4th.
Windows 11 should be in the top 3, as recall had tons of issues and still has issues. I agree with this placement.
The major telecom attacks was 2nd. This is quite interesting.
And the number one item in this list? The Rise of InfoStealers.
That was beyond something that we can write about. InfoStealers on its own is pretty big, and I can see why it was first here.
What is your list?
The biggest cybersecurity and cyberattack stories of 2024 is their artile, so let me know what your thoughts are on this.
Discover more from The Technology blog and podcast
Subscribe to get the latest posts sent to your email.