March was certainly the month of ransomware, with more medical institutions held at ransom by these kind of cyberattacks. In March, ransomware even found its way on Macs, the first of its kind, showing the world no one is really safe. Major websites like the New York Times and BBC also had their adverts hijacked by malvertising delivering ransomware.
If you would like to know how you can protect your company, your data and your employees have a look at our quick guide to preventing ransomware.
In the meantime, let’s countdown the top 10 hacks, attacks and vulnerabilities of March 2016.
Billion dollar bank heist stopped by… a typo
It was a spelling mistake which prevented a mega heist of nearly $1 billion from the central bank in Bangladesh. The hackers still managed to get away with a transfer of $80 million. The heist was stopped after a transaction with a spelling mistake prompted an investigation by a routing bank.
Cancer clinic breached
On March 10, a US Cancer Clinic admitted that the private information of 2.2 million patients and employees might have been exposed after their systems were breached. The breach is said to have happened backed in November 2015, but the FBI had asked the clinic not to disclose the breach until further investigations.
The rise of the digital pirates
Piracy on the high seas has reached new digital frontiers. According to a Verizon Data Breach Report, and as reported by Arstechnica, the report highlighted an incident where a shipping company experienced a series of attacks meant to steal information on shipping containers which pirates would then target knowing they contained high-value cargo.
Cox employee data for sale on the dark web
On March 3, Motherboard reported that Cox Communications was investigating the possibility of a data breach which was instigated by the sale of 40,000 employee records put up for sale on the dark web. A sample of 100 employees included the names, the names of employees’ managers, and the date of their last login.
Hacktivist Cyber Anakin attacks Russian websites
Hacker with a cause, Cyber Anakin spent the month of March attacking random Russian websites as way to get revenge for the MG17 crash. In a Twitter interview with a Motherboard journalist, he said, “I hold consequentialist approach during the hack, meaning that I only care about the public shock among Russians as a result of the hack, and to show the irony that Russians can defend against Hitler but cannot defend against hacker [sic].”
Ransomware malvertising hits major websites
March being the month of ransomware, we also saw a ransomware malvertising campaign affecting the advertising networks of major news websites such as the BBC, New York Times, AOL, and NFL. Together these websites would have exposed billions of visitors to the malicious ads. These ads used vulnerabilities such as a recently-patched flaw in Silverlight, which directed users to a website hosting the Angler exploit kit. This kit would then look for a suitable backdoor to then install the ransomware.
18 million IDs discovered on a server in Japan
Details of 18 million internet users were found on a computer server set up by a Tokyo company. The server was used as a relay server for illegal use in China according to the Tokyo Metropolitan Police Department. The data contained information on 1.78 million people who have accounts on Yahoo Japan, Rakuten, Twitter and more.
Hospitals and ransomware
Following on from February, more hospitals continued being in the crosshairs of ransomware. Two German hospitals, a Kentucky hospital, MedStar Health (which operates 10 hospitals across Washington DC and Baltimore) and a Canadian hospital, were all attacked with some version of ransomware. One of the hospitals in Germany also had to postpone high-risk surgeries until the systems were up and running, showing the world the kind of life-threatening damage this malware can cause.
Credit-card stealing malware found on Rosen Hotels & Resorts systems
In a statement released on March 4, Rosen Hotels and Resorts admitted to having malware illegally planted on their card payment processing systems. The malware was live on the system between September 2014 and February 2016 meaning it went undetected for a year and a half. Hackers siphoned details of hotel guests together with their credit card information. For more information about the breach visit; http://www.rosenhotels.com/protectingourguests/
Details of 250k individuals stolen in Bailey’s Inc. breach
Bailey’s Inc, an outdoor equipment retailer in the US, informed 250,000 customers that their data might have been stolen in a breach on the company’s website. According to SC Magazine “Credit card numbers, cardholder names, CCV numbers, credit card expiration dates, addresses and phone numbers, email addresses, log in credentials to BaileysOnline.com, and other information typed into the website related to customer orders” may be at risk after a hacker gained access to BaileysOnline.com between December 2011 and September 2015.