Find out which were the biggest cyber attacks of the year

Which cyber attacks had the most impact on the world in 2022? Similar events could happen in 2023

It’s not just wars between countries that move the world. Cyber ​​attacks also constitute global threats, being carried out from various parts of the world, both against large companies, and against government agencies or even civilians, which generate, in addition to many headaches for the people involved, losses and insecurities.

A clear has listed in its annual report some relevant facts and events in cyber security in 2022, also with the aim of studying where the failures were in the cases and how the attacks were carried out.

Conflict between Russia and Ukraine

Yes, real-world crises are also gateways to virtual wars. An example of this was the recent Russia-Ukraine conflict, which made clear how borders are almost irrelevant in terms of cyber security. In a recent article, Google says the conflict has transformed the cyber threat landscape.

“The conflict has demonstrated the vulnerability of several instances of critical infrastructure. Becoming a priority target for both sides, attacks on these critical infrastructures have caused damage with potentially catastrophic outcomes, such as, for example, Ukrainian hackers attacking pipeline pressure control systems leading to an explosion ”, explains Sandro Süffert, CEO of Apura.

Not even Twitter has escaped this time

One of the largest social networks in the world, with millions of users, Twitter has been a major target of cybercriminals, especially looking for users’ personal data. In July, a threat actor posted malicious forum ads offering information on 5.4 million Twitter accounts.

The vulnerability exploited by the actor would allow anyone to check if an email address or a phone number has been associated with a Twitter account and recover the ID of that account, with information on the number of followers, username, login name, address , phone number, location, profile picture URL, and other info.

However, having access to this data did not come cheap: US$ 30,000, with information also on celebrities who had accounts on the net. This same data was publicized again on a malicious forum in November, free of charge and with around 400 million unique Twitter users.

The LAPSUS$ Group carries out actions worldwide

Literally one of the largest groups in terms of relevance on the Internet, the LAPSUS$ group has carried out several attacks in Brazil and around the world, not sparing the giants Microsoft, Samsung, LG, Nvidia, Okta, Uber, Ubisoft, EA Entertainment or even agencies governments, such as the Ministry of Health, which take down servers and steal data.

“The impression is that the goal of the group was to attract more attention than to extort the victims,” ​​explains Süffert.

Such was the audacity that LAPSUS$ even had a channel on the Telegram messaging app, and thousands of people began following updates on the attacks, with several members of the group actively participating in the conversations.

One of the alleged leaders, a 17-year-old teenager, was arrested in Oxford, England, along with other accomplices. Another person involved in the group’s activities was arrested in Bahia, Brazil, as part of the “Dark Cloud” operation. In September 2022, the group was credited with a new attack on electronic game company Rockstar, as well as a lawsuit against Uber, all related to LAPSUS$.

DDoS attacks

Remember that in 2022 Distributed Denial of Service (DDoS) attacks, which are an attempt to make a system’s resources unavailable to its users, cause many, many inconveniences! These attacks are more expensive as they require a secure encrypted connection.

To carry out the above attack, the actor used a network of 5,097 devices, each generating up to 5,200 requests per second (RPS), and it was identified that most of the machines originating this attack were in Brazil.

“It is a type of attack that must be monitored exhaustively”, reiterates the CEO of Apura.

In June 2022, Cloudflare said it managed to block a 26 million RPS HTTPS DDoS attack, the largest ever recorded by the company to date. Google also announced that it blocked the largest HTTPs DDoS attack of all time against its customer, which reached 46 million RPS, 76% more than reported by Cloudflare and lasted 69 minutes, as if all daily accesses to Wikipedia happened in just 10 seconds.

The trend is that now, in 2023, threats will proliferate. Therefore, it is essential to have a tool like BTTng, which in 2022 alone monitored more than 3 billion indexed events.

“The higher the prevention, the higher the chances of escaping a cyber-attack,” says Sandro Süffert.

HOMEWORK inspires transformation in the world of work, in business, in society. It is creation ofCOMPASS

content and connection agency.

Source: Terra

Rose

Rose James is a Gossipify movie and series reviewer known for her in-depth analysis and unique perspective on the latest releases. With a background in film studies, she provides engaging and informative reviews, and keeps readers up to date with industry trends and emerging talents.