Cyberattacks are on the rise year over year, and 2020 was no exception. Global ransomware damages hit $11.5 billion in 2019, and Cybersecurity Ventures estimates that number will double by 2021.
This year’s alarming number of data breaches has been attributed to cybercriminals exploiting security weaknesses during the COVID-19 pandemic. The global shift to remote work has prompted hackers to launch multi-faceted cyberattacks aimed at individuals and businesses of all sizes.
Data breaches prove that no business is immune to cyberattacks. Let’s review 2020’s biggest hacks and learn what they can teach us about cybersecurity.
THE BIGGEST DATA BREACHES IN 2020
Unfortunately, cybercrime isn’t going away. Every business and IT professional must take security issues more seriously to protect organizations from the following scenarios.
1. MARRIOTT
In March 2020, hackers accessed an internal data system that contained the personal information of approximately 5.2 million hotel guests who used Marriott’s loyalty program. The data was accessed using two employees’ stolen login credentials at one of Marriott’s franchise properties.
According to the Marriot, hackers might have obtained these employees’ credentials by phishing or credential stuffing.
LESSON 1: Protect Yourself From Phishing Scams
2. NINTENDO
In June 2020, Nintendo announced that 300,000 Nintendo accounts had been breached since the beginning of April. Cybercriminals used customers’ Nintendo Network IDs to make fraudulent purchases without permission. The hackers could also see customers’ personal information and access payment services linked to their accounts to make additional purchases.
As a result of this breach, Nintendo stopped letting users log in to play with their Nintendo Network ID (NNID). The company also recommended that users enable two-factor authentication (2FA) to protect their data.
LESSON 2: Use MultI-Factor Authentication (MFA)
3. ZOOM
At the beginning of April 2020, reports indicated that 500,000 stolen Zoom account credentials (usernames and passwords) were available for sale on the dark web. Cybercriminals began “Zoom bombing,” recording meetings, infiltrating sessions with unwanted screen shares and often shouting obscenities.
The Zoom hack resulted from “credential stuffing,” a method in which hackers use data from previous data breaches to obtain login credentials. In this case, hackers compiled stolen credentials into lists bought by other cybercriminals.
LESSON 3: Create Strong Password Policies and Require Unique Passwords For All Accounts
4. MAGELLAN HEALTH
In April 2020, Magellan Health fell victim to a cyberattack in which hackers exfiltrated 365,000 patient data records and then deployed ransomware. By impersonating a Magellan client, the attackers were able to gain access to Magellan’s system five days before the ransomware attack.
Hackers installed malware to steal employee login credentials and gain access to a single corporate server. That server housed sensitive patient data, including Social Security numbers, W-2 information, and health insurance and treatment information. Unfortunately, this wasn’t Magellan’s first breach: a phishing attack at Magellan lasted for more than a month in 2019.
LESSON 4: Use Antivirus Software
5 CYBERSECURITY MEASURES BUSINESSES SHOULD TAKE TODAY
1. MAINTAIN CLEAR SECURITY POLICIES
Fail to plan, plan to fail. Without clear security policies in place, you’re exposing your business to cyberattacks. Every employee needs to understand the risk involved if security policies aren’t strictly followed.
Here are a few things to include in your cybersecurity checklist:
-
Perform a risk assessment
-
Protect your data
-
Evaluate BYOD policies
-
Maintain strong password policies
-
Use multiple layers of protection
-
Limit user access
-
Impose email restrictions
-
Secure your WiFi
-
Update security policies regularly
Read: The Ultimate Small Business Cyber Security Checklist
2. CONDUCT SECURITY TRAINING
Most non-IT employees are not familiar with basic security best practices and can unintentionally create security vulnerabilities. Your employees might store confidential company data on their mobile devices or be susceptible to opening phishing emails. Train your employees how to detect suspicious emails and files, and teach them how to secure their accounts and strengthen their passwords.
Every employee should be held accountable to follow cybersecurity policies. A well-educated workforce will minimize your exposure to network attacks. Training should thoroughly cover your security policies.
-
Require your IT staff to earn cybersecurity certifications.
-
Host regular cybersecurity awareness training sessions.
-
Test your employees on what they’ve learned after a training session.
-
Require employee signatures when implementing new policies.
3. CREATE A BACKUP AND RECOVERY PLAN
Data backup and recovery methods give you invaluable peace of mind. Protecting yourself against cyberattacks can prevent you from experiencing a data breach that could kill your business.
-
Schedule regular backups.
-
Maintain backup data in the Cloud or off-site storage facility.
-
Evaluate and test your data recovery process to keep repeat hackers at bay.
4. PRACTICE REGULAR PATCH MANAGEMENT
Software patches are released periodically by software providers to address glitches in software applications. A patch management process is a preventative measure that addresses and fixes these software vulnerabilities, keeping your systems safe. Ignoring critical system updates puts you at greater risk of ransomware attacks.
Your patch management process should include these steps:
1. Inventory all company software
2. Create and regularly review your patch management policies
3. Stay current with patch updates
4. Test patches before deployment
5. Backup your data
6. Download and deploy patches securely
7. Document and categorize all patch applications
Learn more: 7 Steps to a Proper Patch Management Process
5. CONSIDER DARK WEB SCANNING
If your company data is compromised, you’ll want to know where your personally identifiable information is circulating. Hackers frequently purchase and sell stolen data on the dark web to commit identity theft and fraud.
A dark web scan monitors criminal chat rooms, private networks and other hidden sites to search for your stolen information. The system notifies you when it detects your compromised data on the dark web.
Although a dark web scan can’t remove your data once it’s been published, it enables you to take precautions and protect users from identity theft.
OUTSOURCE YOUR CYBERSECURITY NEEDS TO SUGARSHOT
2020 has been quite a year, replete with natural disasters, a global pandemic and record-breaking cyberattacks. Cyberattacks are more common than you think. They can threaten your business — and they can happen to you.
Outsourcing your cybersecurity needs is a smart way to unburden your IT staff from time-consuming security projects.
SugarShot offers 24/7 custom IT security services for businesses. We deliver constant network monitoring, intrusion detection and threat management so you can stop worrying about security threats and start focusing on growing your business.
Need help securing your IT infrastructure? Get a free network assessment to identify critical security vulnerabilities today.