Cybersecurity Breaches in 2024

CYBER BREACHES IN 2024: Major Incidents and Key Lessons

Cybersecurity has become a pressing concern in the face of rapid technological advancements. The year 2024 witnessed numerous high-profile data breaches across various sectors, from finance to telecom, emphasizing the urgent need for stronger digital defenses. Here’s a detailed look at some of the most significant cybersecurity incidents of the year, their causes, impacts, and organizational responses.

Key Cybersecurity Breaches in 2024

 January 2024: CloudSEK Breach

– What Happened: CloudSEK, a leading cybersecurity firm, reported a data breach exposing sensitive personal information of approximately 750 million Indian telecom users.

– How It Happened: The breach occurred due to compromised session cookies from an employee’s Jira account. Threat actors advertised stolen data, including dashboards and schema diagrams, on the Dark Web.

– Impact: Data exposure affected 80% of India’s telecom user base.

– Response: CloudSEK alerted authorities and implemented advanced threat detection and user awareness programs.

 February 2024: Burger Singh Hacked

– What Happened: Burger Singh’s website was hacked by a Pakistani group, Team Insane PK, replacing the homepage with digital graffiti.

– How It Happened: Vulnerabilities in the promo code system and potential phishing attacks led to the breach.

– Response: The company humorously embraced the incident, turning it into an “open mic night for hackers.”

 March 2024: Bira 91 and Polycab Ransomware Attacks

– Bira 91: The craft beer company faced a ransomware attack by BianLian, compromising 1.9TB of sensitive data, including recipes and trade secrets.

– Polycab: Polycab’s IT infrastructure was targeted by LockBit. Quick responses helped mitigate significant damage.

 April 2024: boAt Data Leak

– What Happened: A hacker known as ‘ShopifyGUY’ leaked data of 7.5 million boAt customers on the Dark Web for just 2 Euros.

– Impact: Personal data, including names and contact details, were compromised.

– Response: boAt launched an investigation and prioritized data security.

 May 2024: BSNL and Tamil Nadu Police Breaches

– BSNL: The state-owned telecom giant faced a breach involving sensitive data on FTP servers. Immediate action included password resets and enhanced air-gap measures.

– Tamil Nadu Police: Hackers accessed the facial recognition database using stolen login credentials, exposing sensitive information.

 June 2024: Nainital Bank Heist

– What Happened: Hackers siphoned off ₹16.71 crores through 84 unauthorized transactions using a bank manager’s credentials.

– Response: Cybercrime teams and CERT-In investigated the incident, freezing ₹1.9 crores.

July 2024: Airtel and WazirX Breaches

– Airtel: A hacker claimed to have leaked data of 375 million customers. However, Airtel denied any breach after internal investigations.

– WazirX: India’s largest crypto exchange suffered a $230 million theft due to a multi-signature wallet compromise.

Lessons Learned and Moving Forward

The breaches of 2024 underscore the vulnerabilities that arise from:

– Weak authentication measures.

– Lack of robust cybersecurity frameworks.

– Overcollection of sensitive data.

Key Takeaways for Organizations:

1. Implement multi-factor authentication (MFA) across all systems.

2. Regularly audit and update security protocols.

3. Collect only necessary data to minimize risks.

4. Educate employees and users about phishing and other cyber threats.

Strengthening Cybersecurity for the Future

The rise in cyberattacks highlights the need for vigilance and continuous improvement in cybersecurity measures. Organizations must prioritize data protection and collaborate with industry experts to develop resilient systems. With these steps, businesses can safeguard sensitive information and maintain customer trust in an increasingly digital world.

For more updates on cybersecurity trends and insights, stay tuned!

[1]Sasi, R. (2024) [updated] cyber security incident at CloudSEK: Cloudsek, RSS. Available at: https://www.cloudsek.com/blog/cyber-security-incident-at-cloudsek#:~:text=attack%20on%20CloudSEK.-,An%20employee’s%20Jira%20password%20was%20compromised%20to%20get%20access%20to,or%20server%20access%20was%20compromised. (Accessed: 25 July 2024).

[2] Id.

[3] Cybersecurity co claims data leak of 750 million telecom users, Dot asks telcos for security audit (2024) The Economic Times. Available at: https://economictimes.indiatimes.com/industry/telecom/telecom-news/cybersecurity-co-claims-data-leak-of-750-mn-telecom-users-dot-asks-telcos-for-security-audit/articleshow/107239398.cms?from=mdr (Accessed: 25 July 2024).

[4] Chakravarti, A. (2024) Data of 750 million telecom users in India being sold on Dark Web, cyber experts claim, India Today. Available at: https://www.indiatoday.in/technology/news/story/data-of-750-million-telecom-users-in-india-being-sold-on-dark-web-cyber-experts-claim-2495752-2024-01-31 (Accessed: 25 July 2024).

[5] Id.

[6] Singh, S. (2024) Burger Singh’s website compromised in cyber attack by Pakistani hackers, Business Today. Available at: https://www.businesstoday.in/technology/news/story/burger-singhs-website-compromised-in-cyber-attack-by-pakistani-hackers-419209-2024-02-28 (Accessed: 27 July 2024).

[7] Id.

[8] Chakravarti, A. (2024) Pakistani group hacks Burger Singh website, company reacts in a hilarious manner, India Today. Available at: https://www.indiatoday.in/technology/news/story/pakistani-group-hacks-burger-singh-website-company-reacts-in-hilarious-manner-2508646-2024-02-29 (Accessed: 28 July 2024).

[9] Tripathi, N. (2024) Polycab, Motilal Oswal, Bira91 among latest companies to be hit by Ransomware attacks, Forbes India. Available at: https://www.forbesindia.com/article/news/polycab-motilal-oswal-bira91-among-latest-companies-to-be-hit-by-ransomware-attacks/92331/1 (Accessed: 28 July 2024).

[10] Id.

[11] Standard, B. (2024) Data breach: No impact on biz ops, says Motilal Oswal Financial Services, Business Standard. Available at: https://www.business-standard.com/companies/news/no-impact-on-business-operations-motilal-oswal-financial-on-data-breach-124021901020_1.html (Accessed: 28 July 2024).

[12] D’Souza, P. (2024) Ransomware attack hits Bengaluru firm, criminals demand $80,000, Deccan Herald. Available at: https://www.deccanherald.com/india/karnataka/bengaluru/ransomware-attack-hits-b-luru-firm-criminals-demand-80-000-2958894 (Accessed: 26 July 2024).

[13] Id.

[14] Supra note 9.

[15]Halcyon Tech, Inc. (2024) Bianlian attacks bira 91, RSS. Available at: https://ransomwareattacks.halcyon.ai/attacks/bianlian-attacks-bira-91 (Accessed: 28 July 2024).

[16] Id.

[17] Dhivya, D. (2024) Polycab IT infrastructure targeted in ransomware attack, Cyber Security News. Available at: https://cybersecuritynews.com/polycab-it-infrastructure-targeted/ (Accessed: 28 July 2024).

[18] Boat Data Breach: Name, address, contact number, email id of 75 lakh boat customers for sale at 2 Euro (2024) The Economic Times. Available at: https://economictimes.indiatimes.com/industry/cons-products/electronics/boat-data-breach-name-address-contact-number-email-id-of-75-lakh-boat-customers-reportedly-leaked-online/articleshow/109127405.cms?from=mdr (Accessed: 28 July 2024).

[19] Gupta, A. (2024) Cyberattack on RCC, Kerala exposes huge data; experts call for security, Medical Buyer. Available at: https://www.medicalbuyer.co.in/cyberattack-on-rcc-kerala-exposes-huge-data-experts-call-for-security/ (Accessed: 28 July 2024).

[20] Id.

[21]Desk, F.T. (2024) Fe tech bytes, Technology News | The Financial Express. Available at: https://www.financialexpress.com/life/technology-massive-data-breach-hits-bsnl-government-confirms-sensitive-information-exposed-3564526/ (Accessed: 26 July 2024).

[22]CERT-in reported possible intrusion, data breach at BSNL on May 20: MOS communications (2024) The Indian Express. Available at: https://indianexpress.com/article/india/cert-in-intrusion-data-breach-bsnl-mos-communications-9473320/ (Accessed: 26 July 2024).

[23]Staff, T. (2024) Govt confirms BSNL User Data Breach, to set up committee for Review, The News Minute. Available at: https://www.thenewsminute.com/news/govt-confirms-bsnl-user-data-breach-to-set-up-committee-for-review-2#:~:text=India’s%20state%2Downed%20telecom%20giant,to%20prevent%20future%20data%20breaches. (Accessed: 26 July 2024).

[24] Selvaraj, A. (2024) Tamil Nadu police data hacked, for sale on Dark Web: Chennai news – times of India, The Times of India. Available at: https://timesofindia.indiatimes.com/city/chennai/tamil-nadu-police-data-hacked-for-sale-on-dark-web/articleshow/109854032.cms (Accessed: 28 July 2024).

[25] Id.

[26] Id.

[27] Nainital Bank’s server hacking: Police freeze ₹1.90 crore across India (2024) Hindustan Times. Available at: https://www.hindustantimes.com/cities/noida-news/nainital-bank-s-server-hacking-police-freeze-1-90-crore-across-india-101722027118978.html (Accessed: 28 July 2024).

[28] Shah, J. (2024) The leak that probably wasn’t: All about the ‘alleged’ Airtel Data leak, India Today. Available at: https://www.indiatoday.in/india/story/airtel-data-leak-breachforums-aadhar-card-info-pan-card-uidai-addresses-2562941-2024-07-05 (Accessed: 25 July 2024).

[29] Id.

[30]Bharadwaj, S. (2024) Wazirx suffers major security breach, Forbes India. Available at: https://www.forbesindia.com/article/cryptocurrency/wazirx-suffers-major-security-breach/93672/1#google_vignette (Accessed: 26 July 2024).

[31]Id.

[32]TRIAD, C. (2024) Wazirx incident: Explained: Cloudsek, RSS. Available at: https://www.cloudsek.com/blog/wazirx-incident-explained (Accessed: 26 July 2024).

[33]Id.

[34] Eddy, N. (2024) Mobile phishing attack targets India postal system users, Mobile Phishing Attack Targets India Postal System Users. Available at: https://www.darkreading.com/endpoint-security/china-backed-smishing-campaign-targets-india-post-users (Accessed: 28 July 2024).

[35] Id.