Cyber Attacks

Social media app, Timehop, was hit with a data breach, affecting 21 million of its users which dates back since December of 2017. The social media app that pulls from your “memories” on Facebook and Instagram confirmed that the cybercriminals have access to names, email addresses, phone numbers, and most alarming, “access tokens”, which could allow the hackers to expose user’s social media accounts.

Although no financial information was stolen, reports indicate that 4.7 million users had their phone numbers attached to their accounts, which can be sold for more money on the dark web than names and email addresses. Timehop reported that a hacker accessed their cloud computing account, which wasn’t protected by two-factor authentication. This attack can potentially result in consulting from third-party forensic cybersecurity experts, PR consultants, and data breach attorneys, all billing at an hourly rate.

If Timehop had a cyber insurance policy in place, it’s likely that they would be covered from any type of financial loss related to this attack.

Evolve MGA offers cyber insurance that covers policyholders in the event their cloud data is hacked, lost, or stolen. Get appointed with our cyber insurance specialists for a FREE Quote!

If you’d like to read more about this data breach, click here.

Security researchers have discovered a new virus that is so advanced that it can decide if your computer is powerful and vulnerable enough to mining or ransomware. This new age variant of Rakhni ransomware infects computer systems by infiltrating the network, which it then evaluates the computer configurations to see if ransomware or crypto-mining is more profitable for the hacker.

As we’ve mentioned in the past, crypto-mining has recently become the most popular style cyber attack in 2018, but ransomware is still a likely attack as it can be incredibly profitable for cybercriminals. The difference between the two is:

Ransomware attacks typically lock computers for a “ransom” but doesn’t always guarantee a paycheck as some victims aren’t willing to negotiate with cyber criminals. On the other hand, hackers who access a business server, can utilize the networks CPU’s in order to mine the digital currency. Depending on the window of time and the value of the cryptocurrency, hackers can make a significant profit, especially if the business is unaware that their network is being exposed.

According to Kaspersky Labs, this new found malware is a variant of Rakhni ransomware, which has been upgraded to include cryptocurrency mining capability, which has provided cybercriminals the option of attack. The Rakhni malware is being spread using spear-phishing emails with an MS word file in the attachment, which if opened, prompts the victim to save the document and enable editing.

Evolve MGA offers cyber insurance that covers policyholders in the event their cloud data is hacked, lost, or stolen. Get appointed with our cyber insurance specialists for a FREE Quote!

If you’d like to read more about Rakhni ransomware, click here.

If our posts about the various crypto-jacking attacks on businesses haven’t provided enough reason to believe the hype, numerous recent studies indicate that crypto-jacking attacks on businesses have surpassed ransomware attacks in popularity. If 2017 was the year of ransomware attacks, 2018 is quickly becoming the year of crypto-jacking attacks.

The craze surrounding cryptocurrency has created the opportunity for hackers to attack businesses in new and innovative ways. Either by infecting a network with a malicious malware that locks businesses out, which in turn provide the opportunity to request cryptocurrency payments without being traced, or leveraging a business’ server in order to utilize their CPU’s to mine cryptocurrency, there is no doubt that businesses need to protect themselves with proper security practices and a cyber insurance policy in order to stay in front of these attacks…which affect businesses of all sizes, across various industries.

According to Raj Samani, Chief Scientist at McAfee, “Attackers targeting cryptocurrencies may be moving from ransomware to coin miner malware, which hijacks systems to mine for cryptocurrencies and increase their profits,” which has increased over 1,000% in the first quarter of 2018. As mentioned cybercriminals are targeting all different types of businesses and leveraging different malicious strategies in order to get paid. For instance, the City of Atlanta was hit with a malware attack, which the hackers requested $50,000 in cryptocurrency in order to unlock their network, but the city officials didn’t oblige, which ultimately led to their systems and processes being deleted and $2,000,000+ in financial losses. Additionally, Tesla recently found out that hackers were utilizing an open AWS server to mine cryptocurrency for over a month without being detected.

All in all, hackers continue to find new and innovative strategies to attack businesses that appear to be low-hanging fruit, which in turn places a lot of pressure on businesses to update their systems, install proper cyber security, invest more time and resources in end-user training, and ultimately get protection from cyber specialists by putting a cyber insurance policy in place.

Evolve MGA offers cyber insurance that covers policyholders in the event their cloud data is hacked, lost, or stolen. Get appointed with our cyber insurance specialists for a FREE Quote!

If you’d like to read more about the rise of crypto-jacking, click here.

Typeform, a data collection that specializes in form building and online surveys for businesses around the world was hacked this past week, exposing sensitive information of its users. The Spanish based company recognized the data breach on June 27th and immediately hired a forensic investigation team (billing on an hourly rate most likely) to extract information surrounding the security vulnerability.

The cybercriminals who accessed their servers stole data backups for surveys conducted before May 3rd of this year with the likely plan to sell them on the dark web (although this wasn’t disclosed).

Typeform stated that they were quick to take action post breach, confirming that they patched the exposure and emailed all of the affected users warning them that they can be subject to potential phishing emails. In similar instances, companies affected by data breaches, especially those that get payment card information and detailed sensitive information stolen are subject to offer free credit monitoring services to all those affected as well.

It’s important to note that Typeform customers Adidas, Ticketmaster, and Monzo confirmed that partial customer information has been hacked as result of the Spanish data collection company’s data breach.

Although it’s not confirmed, Typeform can experience reputational harm and loss of financial profits if these major clients decide that they don’t want to work with them any longer due to this cyber attack.

Evolve MGA offers cyber insurance that covers policyholders in the event their cloud data is hacked, lost, or stolen. Get appointed with our cyber insurance specialists for a FREE Quote!

If you’d like to read more about this data breach, click here.

Ticketmaster, one of the largest ticket distribution and sales companies, experienced a data breach this past week, exposing millions of their customers. According to reports, the cybercriminals responsible for the cyber attack found a vulnerability in the automated customer support chatbot software (Inbenta Technologies) that the ticket distribution company uses to communicate with customers.

Ticketmaster, which is owned by Live Nation Entertainment, announced the severity of the attack, stating that not only could the data breach been exposing their customers since September 2017, but the hackers could have collected some very valuable information. The unknown third party that accessed Ticketmaster and possibly others under Live Nation, collected personal information, as well as payment card information on millions of customers.

This attack can potentially cost hundreds of thousands to millions of dollars, which could result in consulting from third-party forensic cybersecurity experts, PR consultants, data breach attorneys, and credit monitoring services, all billing at an hourly rate. Additionally, Ticketmaster can possibly experience business interruption losses due to losing trust from customers, as well as class action lawsuits from disgruntled customers.

Had Ticketmaster been protected with a cyber insurance policy, it’s likely that they would be covered for these expenses.

Evolve MGA offers cyber insurance that covers policyholders in the event their cloud data is hacked, lost, or stolen. Get appointed with our cyber insurance specialists for a FREE Quote!

If you’d like to read more about this data breach, click here!