The 10 Worst Corporate Hacks and Breaches of 2022

Despite huge global evolutions in cybersecurity protection, cyberattacks and data breaches remain major businesses.

It is concerning how frequently businesses, big and small, have cybersecurity breaches. The threat landscape has changed dramatically over the past several years given the recent high-profile attacks that have targeted industries such as healthcare, finance, retail, government, manufacturing, and energy.

The biggest breaches of online security in 2022 so far are listed below

1. Crypto.com: Because cryptocurrency is a lucrative firm, it seems to sense that Crypto.com experienced a significant breach at the beginning of 2022. Nearly 500 people’s cryptocurrency wallets were the target of the attack, which happened on January 17. Even though the blockchain is a reasonably secure transaction system, the hackers utilized a rather straightforward technique to accomplish their goal: they bypassed the website’s two-factor authentication (2FA). They grabbed $15 million in Ethereum and $18 million in Bitcoin.
2. News Corp: Given that News Corp is one of the largest news organizations in the world and that it first acknowledged server breaches in February 2020, it should come as no surprise that hackers are keen to compromise its security. News Corp found proof that its journalists’ emails had been taken. Although the thieves have not been found, News Corp has suggested that espionage is the cause of the hack, which makes sense given that News Corp servers house a lot of sensitive data.
3. Microsoft: Microsoft, a global leader in computing, is no stranger to cyberattacks, and on March 20, 2022, a hacker group by the name of Lapsus$ targeted the company. To prove that they had successfully hacked Microsoft and compromised Cortana, Bing, and several other products, the group released a screenshot on Telegram.
4. Red Cross: More than 500,000 pieces of information were compromised in an attack on a third-party contractor, including records that the Red Cross deemed “particularly susceptible.” In the end, thousands of people had their private information taken, and the majority of the victims are presently missing or in danger. To stop the attack and look into this ostensibly political breach, the Red Cross pulled systems offline, but no one has been held accountable.
5. Ronin: Since Ronin is a blockchain-based gaming platform that uses cryptocurrency, it was only a matter of time before savvy criminals decided to target it. This is exactly what happened between November 2021 and March 2022. Players of Ronin’s Axie Infinity game can acquire NFTs and digital currency. Due to the game’s rising popularity, the developer dialed back security measures to allow for a larger user base.
6. Flexbooker: A significant attack that affected about three million of FlexBooker’s customers occurred between the end of 2021 and the beginning of 2022. Many prominent users have abandoned FlexBooker as a result of the incident since confidential data, such as ID information, driver’s license numbers, and passwords, was taken by the hackers and subsequently made available for sale on well-known hacking message boards. The hack was carried out by a group of hackers known as Uawrongteam, and it wasn’t a particularly sophisticated operation. The group broke into FlexBooker’s AWS servers and installed malware to take over the company’s systems.
7. GiveSendGo: Canadian truckers who drove across the nation in opposition to COVID regulations selected the Christian fundraising platform GiveSendGo. Political hackers carried out a traditional DDoS attack by stealing, publishing, and redirecting the information of 90,000 donors to the protestors’ fundraising page to a site that decried the truckers. Some information was also forwarded to a website that disseminates stolen information, mostly from far-right organizations.
8. Cash App: This well-known mobile payment app is owned by Block, which acknowledged in April 2022 that a former employee had compromised the service’s infrastructure. Along with a tonne of other very sensitive financial data, the attack involved client names, stock trading information, account numbers, and portfolio values. Block has not officially disclosed the number of individuals affected by the hack, but the business has contacted more than 8 million customers to let them know about the situation.
9. PressReader: The largest online distributor of newspapers and magazines is this Vancouver-based business. Numerous important news titles, including publications like the New York Times and local papers, were put on hold in March 2022 as a result of an attack. PressReader hasn’t said if ransomware was involved in the attack, but given that it happened right after the firm announced it would provide free access to customers in Ukraine, it may have been a political hit.
10. Marquard&Bahls: The German energy giant was targeted in February 2022, which resulted in the instability of its IT system. More than 200 petrol stations were shut down as a result in Germany. The strike made it difficult for businesses like Shell to supply clients with fuel, and analysts have claimed that the attack appears to have been carried out by the notorious BlackHat gang, a Russian organization that has targeted oil pipelines in the past.

No matter how big or little your organization is, in 2022 every modern firm faces a higher risk of a cyber assault. You require a complete cybersecurity solution to protect your data.